Drupal Login is giving Admin access without any role for user/1

Created on 31 August 2023, 10 months ago

Problem/Motivation

When the role is removed for the admin to just an authenticated default role and when logout and login again giving the administration permissions which is for /user/1

Steps to reproduce

Installed the latest drupal 10.1.2
By default the user will /user/1
Now with the main admin account (/user/1) the "role as Administrator is removed" and just assigned as Authenticator for the user/1 and saved the user details

Now when login with the user who doesn't have Administrator role but giving all admin permissions for that user

Proposed resolution

Once the role has been revoked it shouldn't give them as administrator permissions

Remaining tasks

User interface changes

API changes

Data model changes

Release notes snippet

🐛 Bug report

Status

Closed: duplicate

Version

10.1 ✨

Component

User system →

Last updated 1 day ago

Maintained by
🇺🇸United States @moshe weitzman
🇧🇪Belgium @kristiaanvandeneynde

Created by

🇮🇳India santhosh@21

Live updates comments and jobs are added and updated live.

Comments & Activities

Issue created by @santhosh@21
Comment 10 months ago →
🇮🇳India santhosh@21
Comment 10 months ago →
🇮🇳India santhosh@21
Status changed to Closed: duplicate 10 months ago10:16pm 31 August 2023
Comment 10 months ago →
🇺🇸United States cilefen
There is a long-existing issue to change this

contrib.social Blog FAQ Discussions

Production build 0.69.0 2024