On the tests' text we have found out that we may allow a rogue user to lock a resource.
If someone locks a resource, then his rights on the resource are removed (e.g.: an administrator), what happens with the resource? Does it remain locked, and hence, kidnapped by this user? Can the owner still remove the lock?
Further research needed...
On the tests' text we have found out that we may allow a rogue user to lock a resource.
If someone locks a resource, then his rights on the resource are removed (e.g.: an administrator), what happens with the resource? Does it remain locked, and hence, kidnapped by this user? Can the owner still remove the lock?
Further research needed...