Access Rights Issue with Projects listed in the Project ComboBox

Hi,
I'm facing the following scenario:
I have a user which is configured in the right access form to "access items from its own projects" (complete access to items, but only from projects where s/he is assigned). This user was assigned to only one project.

In Today screen and Project screen, projeqtor only shows the project he is assigned. However, when I click in the combobox in the upper left corner to "filter" a project, my entire project list is displayed (even the projects the user is not assigned to).

Attached, follows a print which shows the project screen with only one project, the project that the user is assigned (plus a template project), and the mentioned project list showing all projects (I'm not showing the project names, but you can see the list is big).

I noticed that this behavior had happened because I had previously accessed projeqtor with a user who was able to see all projects. Then, when the user with limited rights accessed projeqtor, this user with limited rights was able to see the complete project list (which I think is a access right issue). Once I clean the browser cache (SHIFT + F5), the user with limited access rights only sees its own projects in the list.

Would it be possible to force the cleaning of the cache (or something like that), so this access right issue would not happen?

PS: I'm using google chrome 37.0.2062.124 m (just in case this info matters).

Thank you very much indeed.

Hi,

Well, about the seriously of the issue, it may be somehow important if different users access the same machine (a shared machine, in a meeting room, for instance). But yes, probably this won't happen in a normal workstation.

About the visibility and access rights, I have the following configuration:
1. I have a access mode called "controle total" where the user has total control for items on its own projects. (see attachment "access mode.png").
2. The user "francis.teste", with limited visibility, is configured with the profile "Equipe PMO" (PMO Member) - (see picture "User profile.png")
3. For the profile "Equipe PMO", in access mode to data screen, all items are configured with the access mode "controle total" (see pictures "access mode to data - 1/2/3.png"
4. For the profile "Equipe PMO", in specific access mode screen, all items are configured to see only items from its own projects (see pictures "specific access mode - 1/2.png"

So, having that configuration, I took the following steps:
1 - Connected in projeqtor with a user with full visibility to all items in all projects
2 - I used projeqtor with this user for a while, so I certainly click of the "project combobox" a few times, entered today and project screen and also other screens. (don't know exactly everything I did )
3 - disconnected this user with full visibility.
4 - connected in projeqtor with the user with limited visibility (username "francis.teste", shown in the attachments).
5 - clicked on the "project combobox" and all projects were listed.
6 - I used projeqtor with this user for a while (user with limited visibility)
7 - disconnected from projeqtor.

I repeated steps 4 to 7, some times and always could see the entire list. So, after some trials, before connecting with the user "francis.test" (limited access), I hit "SHIFT + F5" to clean the browser cache. Then I connected again (Step 4) with the same user (francis.test) and in step 5, I only saw the project the user was assigned to.

Kind regards,

Hi,
I do have to agree with you. I've been trying to reproduce the problem without success as well. After it has occurred the first time (and I've clean up the cache), it did not happen again, no matter what I do.

At that time, I have disconnected using the "disconnect" option in the bottom left corner of the system screen.

Thanks for your attention.
Kind Regards.