| Summary | agora permission system doesn't work anymore |
| Queue | Agora |
| Type | Bug |
| State | Resolved |
| Priority | 3. High |
| Owners | duck (at) obala (dot) net |
| Requester | vilius (at) lnk (dot) lt |
| Created | 12/29/2006 (6783 days ago) |
| Due | |
| Updated | 12/29/2006 (6783 days ago) |
| Assigned | 12/29/2006 (6783 days ago) |
| Resolved | 12/29/2006 (6783 days ago) |
| Github Issue Link | |
| Github Pull Request | |
| Milestone | |
| Patch | No |
or simple installation. But of course this is a my personal point of
view.
I protected the administration actions by return false if checking
DELETE and the permission don't exits. So in in first install, all is
allowed and the administration actions are leaved only to the super
admin.
Duck
back to normal.
However, I do not agree with you about if not permissions are found in
a scope. I think you should return false instead of true in that case.
It will be stimulus for the admins to create needed permissions after
upgrade (like it was in my case).
or scope permission is set, the access is granted. If exists, it first
checks the scope and then the forums permission.
We can change the logic a little bit to bi more protective for delete
permission if no permission is set. For example to grant DELETE
permission only for admin.
State ⇒ Assigned
Priority ⇒ 3. High
Type ⇒ Bug
Summary ⇒ agora permission system doesn't work anymore
Queue ⇒ Agora
State ⇒ Unconfirmed
lock, delete messages/forums.
My permission set:
All Authenticated Users: Show, Read
Guests: Show, Read
Owner: Show, Read, Edit, Delete