Add user to project when locking themselves out

Automatically add the current user with their access level to the project's user list if after updating it they can no longer access it (i.e. by making it private). Fixes #16554
mantisbt · Nov 1, 2013 · e08fc01 · e08fc01 · atrol · Nov 1, 2013
1 parent 47f0ccf
commit e08fc01
Showing 1 changed file with 13 additions and 1 deletion.
diff --git a/manage_proj_update.php b/manage_proj_update.php
@@ -56,9 +56,21 @@
 $f_enabled	 	= gpc_get_bool( 'enabled' );
 $f_inherit_global = gpc_get_bool( 'inherit_global', 0 );
 
-access_ensure_project_level( config_get( 'manage_project_threshold' ), $f_project_id );
+$t_manage_project_threshold = config_get( 'manage_project_threshold' );
+access_ensure_project_level( $t_manage_project_threshold, $f_project_id );
+
+# Save current access level to that project, so we can restore it if needed
+$t_user_id = auth_get_current_user_id();
+$t_access_level = user_get_access_level( $t_user_id, $f_project_id );
 
 project_update( $f_project_id, $f_name, $f_description, $f_status, $f_view_state, $f_file_path, $f_enabled, $f_inherit_global );
+
+# User just locked themselves out of the project by making it private,
+# so we add them to the project with their previous access level
+if( VS_PRIVATE == $f_view_state && !access_has_project_level( $t_manage_project_threshold, $f_project_id ) ) {
+	project_add_user( $f_project_id, $t_user_id, $t_access_level );
+}
+
 event_signal( 'EVENT_MANAGE_PROJECT_UPDATE', array( $f_project_id ) );
 
 form_security_purge( 'manage_proj_update' );