-
Notifications
You must be signed in to change notification settings - Fork 126
-
Notifications
You must be signed in to change notification settings - Fork 126
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Unexpected view results group/user rights on forum #163
Comments
BrendaH
added a commit
to BrendaH/django-machina
that referenced
this issue
Sep 11, 2019
test_checker.py test_knows_that_user_permissions_take_precedence_over_group_permissions only checked one case of the four that can occur. See table schematic in issue on github: ellmetha#163 So I added the tree other cases of which 1 currently breaks. test_handler.py gets a new method test_can_return_a_list_of_readable_forums_taking_into_account_user_over_group_precedence to check the workings of _get_forums_for_user and check the same 4 cases as mentioned above (again, see table schematic in reported issue) Two of these cases currently break.
BrendaH
added a commit
to BrendaH/django-machina
that referenced
this issue
Sep 11, 2019
test_checker.py test_knows_that_user_permissions_take_precedence_over_group_permissions only checked one case of the four that can occur. See table schematic in issue on github: ellmetha#163 So I added the tree other cases of which 1 currently breaks. test_handler.py gets a new method test_can_return_a_list_of_readable_forums_taking_into_account_user_over_group_precedence to check the workings of _get_forums_for_user and check the same 4 cases as mentioned above (again, see table schematic in reported issue) Two of these cases currently break.
Fixed by #168. Thanks again! |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Perhaps I am misunderstanding the permission system (I've dived into it but do not completely follow the code... I'm afraid).
Example situation:
Things I checked (read each table row from left to right) :
Forum seems to take precedence over global, which is what I'd expect.
However, with group/user there seem to be 2 cases that give the opposite result than I'd expect.
I'd expect that, because a user-set permission is more fine-grained than a group-set permission, the user-set permission should take precedence. Regardless of which one says YES and which one says NO.
Is this intentionally not the case, and if so why?
(I am trying to implement an target-all-authenticated-users permission, but I first need to understand the current way stuff works.)
The text was updated successfully, but these errors were encountered: