Incorrect security group inheritance on record modification #5332

New issue

Open

opened 2026-02-20 16:59:44 -05:00 by deekerman · 0 comments

deekerman commented

2026-02-20 16:59:44 -05:00

Owner

Originally created by @SinergiaCRM on GitHub (Jun 24, 2025).

Issue

When "Inherit from Assigned To User" is enabled in Security Suite settings, modifying any record causes the security groups of the assigned user to be re-inherited. This behavior is incorrect, as inheritance should only apply at the time of record creation. This issue is specific to "Inherit from Assigned To User" and does not occur with "Inherit from Created By User" or "Inherit from Parent Record".

Possible Fix

The inheritance logic for "Inherit from Assigned To User" should be modified to apply only during record creation and not upon subsequent modifications.

Steps to Reproduce the Issue

1. Create a user (u1) and assign them two security groups.
2. Ensure that only the "Inherit from Assigned To User" option is activated for inheritance in Security Suite.
3. Create a Contacts record and set "Assigned To" to user u1.
4. Verify that user u1's security groups have been correctly added to the Contacts record.
5. Remove the security group assignment from the Contacts record using the corresponding subpanel.
6. Make any modification to the Contacts record and verify that the security group assignment has been improperly reapplied.

Context

This issue leads to unintended security group assignments on existing records, which can cause data access inconsistencies and potential security access problems.

Version

7.14.6

What browser are you currently using?

Chrome

Browser Version

Versión 131.0.6778.139 (Build oficial) (64 bits)

Environment Information

MySQL, PHP Version 7.4

Operating System and Version

Kubuntu 22.04.4 LTS

Originally created by @SinergiaCRM on GitHub (Jun 24, 2025). ### Issue When "Inherit from Assigned To User" is enabled in Security Suite settings, modifying any record causes the security groups of the assigned user to be re-inherited. This behavior is incorrect, as inheritance should only apply at the time of record creation. This issue is specific to "Inherit from Assigned To User" and does not occur with "Inherit from Created By User" or "Inherit from Parent Record". ### Possible Fix The inheritance logic for "Inherit from Assigned To User" should be modified to apply only during record creation and not upon subsequent modifications. ### Steps to Reproduce the Issue ```bash 1. Create a user (u1) and assign them two security groups. 2. Ensure that only the "Inherit from Assigned To User" option is activated for inheritance in Security Suite. 3. Create a Contacts record and set "Assigned To" to user u1. 4. Verify that user u1's security groups have been correctly added to the Contacts record. 5. Remove the security group assignment from the Contacts record using the corresponding subpanel. 6. Make any modification to the Contacts record and verify that the security group assignment has been improperly reapplied. ``` ### Context This issue leads to unintended security group assignments on existing records, which can cause data access inconsistencies and potential security access problems. ### Version 7.14.6 ### What browser are you currently using? Chrome ### Browser Version Versión 131.0.6778.139 (Build oficial) (64 bits) ### Environment Information MySQL, PHP Version 7.4 ### Operating System and Version Kubuntu 22.04.4 LTS