Skip to content

Changing columns requires board admin #1906

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
jorgemanrubia merged 1 commit into from
Dec 4, 2025
Merged

Changing columns requires board admin #1906

jorgemanrubia merged 1 commit into from
Dec 4, 2025

Conversation

@jeremy
Copy link
Member

@jeremy jeremy commented Dec 4, 2025

jorgemanrubia
jorgemanrubia approved these changes Dec 4, 2025
View reviewed changes
Copy link
Member

@jorgemanrubia jorgemanrubia left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

🙏

@jorgemanrubia jorgemanrubia merged commit 457a6d7 into main Dec 4, 2025
12 checks passed
@jorgemanrubia jorgemanrubia deleted the column-management-auth branch December 4, 2025 07:34
@jzimdars
Copy link
Member

jzimdars commented Dec 4, 2025

@jeremy I can't see the report in Hackerone (no access). What's the motivation here? I don't see any reason from a collaboration standpoint to lock this down. Columns are akin to making/renaming folders in a Dropbox. Seems like developers working on a board wouldn't need an admin to set up their workflow.

@flavorjones
Copy link
Member

flavorjones commented Dec 4, 2025

@jzimdars We had a couple of reports yesterday about board controller permissions. Board deletion was something we did want to restrict, which was done in #1840. This report was along the same vein, it was a board-related controller that was not restricted to board admins, but it wasn't clear whether this was intended behavior or not. Your comment clarifies that it is, so I'll revert.

@flavorjones flavorjones mentioned this pull request Dec 4, 2025
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@jorgemanrubia jorgemanrubia jorgemanrubia approved these changes

@flavorjones flavorjones Awaiting requested review from flavorjones

@jzimdars jzimdars Awaiting requested review from jzimdars

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

5 participants

@jeremy @jzimdars @flavorjones @jorgemanrubia