First Last Prev Next    This bug is not in your last search results.
Bug 57022 - Updating profile photo shows permission error
Updating profile photo shows permission error
Status: REOPENED
Product: UCS
Classification: Unclassified
Component: Self Service
UCS 5.0
Other Linux
: P5 normal (vote)
: ---
Assigned To: UMC maintainers
UMC maintainers
:
Depends on:
Blocks:
  Show dependency treegraph
 
Reported: 2024-02-02 11:33 CET by Oliver Walbert
Modified: 2024-02-08 17:43 CET (History)
1 user (show)

See Also:
What kind of report is it?: ---
What type of bug is this?: ---
Who will be affected by this bug?: ---
How will those affected feel about the bug?: ---
User Pain:
Enterprise Customer affected?:
School Customer affected?:
ISV affected?:
Waiting Support:
Flags outvoted (downgraded) after PO Review:
Ticket number:
Bug group (optional):
Max CVSS v3 score:

Attachments
Screenshot of error message in Self-Service Portal (129.60 KB, image/png)
2024-02-02 11:33 CET, Oliver Walbert 		Details
another screenshot of the self-service portal and the browser console (378.30 KB, image/png)
2024-02-02 15:35 CET, Oliver Walbert 		Details
View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Oliver Walbert 2024-02-02 11:33:20 CET 
Created attachment 11186 [details]
Screenshot of error message in Self-Service Portal

An error message is shown whenever you try to update your profile photo in self service (see attachment).

You can update any other attribute but the profile photo.

If you log into self service via the side menu, you can successfully update the profile photo.

The error seems related to some apache restrictions for the context univention/upload.

I have tested this on multiple UCS systems (5.0). I haven't changed the configuration for apache.

Can you please investigate?

Thanks in advance
Comment 1 Florian Best univentionstaff 2024-02-02 14:08:22 CET 
Hello Oliver,

this is a bug tracker. Please use help.univention.de or our commercial support ways.
Read through https://docs.software-univention.de/manual/latest/de/user-management/user-self-service.html#contact-information to setup your self service properly.

Especially the UCR variable self-service/ldap_attributes needs to contain jpegPhoto and after setting it, the LDAP server must be restarted.
Comment 2 Oliver Walbert 2024-02-02 15:32:34 CET 
That's the problem. The variables are set and it doesn't work. I think it's a Bug in the apache configuration file /etc/univention/templates/files/etc/apache2/sites-available/univention.conf.

The context univention/self-service/* works without authentication but the profile photo form requests the context */univention/upload and throws a HTTP 403 if you're not logged in.

It used to work in UCS 4 but it stopped working some time ago.


P.S.: I already opened an issue on help.univention.de without response ;-) 

https://help.univention.com/t/self-service-portal-update-profile-avatar-gives-error-403/22463
Comment 3 Oliver Walbert 2024-02-02 15:35:12 CET 
Created attachment 11187 [details]
another screenshot of the self-service portal and the browser console
Comment 4 Oliver Walbert 2024-02-08 17:43:44 CET 
Another update:

I can reproduce the permission error with a clean install of UCS. I've downloaded the Virtualbox OVA from your website, installed the system with a test domain.

Steps to reproduce:
- create a user
- install Self-Service Frontend + Backend
- try to change profile photo in self service portal -> permission error
First Last Prev Next    This bug is not in your last search results.