Description of problem: If a user signs in and goes to $server/zanata/profile/create, they can create a whole new user. This shouldn't generally be allowed. Version-Release number of selected component (if applicable): 3.5 How reproducible: Easy always Steps to Reproduce: 1. Sign in 2. Go to 3. $server/zanata/profile/create 4. Enter valid data for the fields, press Save Actual results: Assuming the username/email is unique, it will send a validation email and create a new user. Expected results: If the user is already validated, they should not be able to go to this page - it should redirect to their dashboard Additional info: If FAS is used for login, the user is presented with: Error Validation failed for classes [org.zanata.model.security.HOpenIdCredentials] during persist time for groups [javax.validation.groups.Default, ] List of constraint violations:[ ConstraintViolationImpl{interpolatedMessage='{validator.unique}', propertyPath=, rootBeanClass=class org.zanata.model.security.HOpenIdCredentials, messageTemplate='{validator.unique}'} ]
Migrated; check JIRA for bug status: http://zanata.atlassian.net/browse/ZNTA-465