touch-packages team mailing list archive

[Jamie Strandboge <jamie@xxxxxxxxxx>]

FYI, the fix for bug 1392380 should accompany when signon-apparmor-
extension hits rtm. Both bugs are currently identically tagged. This
must not slip past OTA-1 otherwise there is a gaping security hole for
shipping devices.

** Information type changed from Public to Public Security

-- 
You received this bug notification because you are a member of Ubuntu
Touch seeded packages, which is subscribed to ubuntu-system-settings-
online-accounts in Ubuntu.
https://bugs.launchpad.net/bugs/1376445

Title:
  Addition of signon-apparmor-extension causes token lookup problems

Status in go-onlineaccounts:
  Incomplete
Status in The Savilerow project:
  Invalid
Status in ACL for signond, AppArmor backend:
  Fix Released
Status in Online Accounts setup for Ubuntu Touch:
  In Progress
Status in “ubuntu-system-settings-online-accounts” package in Ubuntu:
  In Progress
Status in “ubuntuone-credentials” package in Ubuntu:
  Confirmed
Status in “signon-apparmor-extension” package in Ubuntu RTM:
  Triaged
Status in “ubuntuone-credentials” package in Ubuntu RTM:
  Confirmed

Bug description:
  As of image ~264 of ubuntu-touch, the signon-apparmor-extension
  package is included. As a result, apps like pay-ui cannot find the
  token any longer, and are not being notified that they are not allowed
  to access the token. The following error appears in the payui log
  file:

  2014-10-01 19:15:51,550 - DEBUG -
  ../../../../lib/SignOn/authsessionimpl.cpp 184 errorSlot
  QDBusError("com.google.code.AccountsSSO.SingleSignOn.Error.PermissionDenied",
  "Client has insuficient permissions to access the
  service.Method:getAuthSessionObjectPath")

To manage notifications about this bug go to:
https://bugs.launchpad.net/go-onlineaccounts/+bug/1376445/+subscriptions