Users may create sites and go above the client's set quota [#2883630]

Any user who may create sites can bypass the quotas set on clients.

To reproduce:

Enable quota module
Set default quota (eg. 1)
Create (or use an existing) client
Create a user with the "aegir client" role and associate the client to their user
Log-in as the newly created user
Create 2 sites

I would normally expect that most users can't bypass the set quotas for a given client.

Comment	File	Size	Author
#2	hosting-2883630-enforce_site_quotas-0.patch	4.35 KB	kienan

Comments

Comment #1

3 June 2017 at 17:52

kienan created an issue. See original summary.

Comment #2

kienan commented 3 June 2017 at 20:00

Status	File	Size
new	hosting-2883630-enforce_site_quotas-0.patch	4.35 KB

Here's a patch. It also adds permissions to bypass all quotas or per-resource.

Comment #3

kienan commented 8 June 2017 at 00:54

Status:

Active

» Needs review

Comment #4

helmo commented 13 July 2017 at 11:48

Status:

Needs review

» Reviewed & tested by the community

Thanks, works as expected.

Comment #5

20 July 2017 at 17:56

helmo committed 4c15bf1 on 7.x-3.x authored by kienan

Issue #2883630 by kienan: Users may create sites and go above the client...

Comment #6

helmo commented 20 July 2017 at 17:56

Status:

Reviewed & tested by the community

» Fixed

Comment #7

3 August 2017 at 17:59

Status:

Fixed

» Closed (fixed)

Automatically closed - issue fixed for 2 weeks with no activity.

Users may create sites and go above the client's set quota

Comments

Comment #1

Comment #2

Comment #3

Comment #4

Comment #5

Comment #6

Comment #7

News items

Our community

Documentation

Drupal code base

Governance of community