Prevent create categories in first level if user is not allowed

[n9iels]

This PR will fix a part of the issues described in #8069

The issue

A user with ACL right to create, delete, edit, edit State, edit own in a specified category can also create new categories on the first level. (no parent)

How to test

1. Create a usergroup with registered as parent
2. Select that group in the "Special" view/access level
3. In Global configuration, allow Administrator Login for this group
4. In the Global options of Articles, Categories and Featured Articles set "Access Administrator interface" to Allowd for that group
5. Create a new category and set the permissions of hat categories for the new user group for the following item on allowed:
   • Create
   • Delete
   • Edit
   • Edit state
   • Edit Own
6. Create a new user for the created user group
7. Login with the user on the back-end
8. Click on the create button and notice you can create a category for "no parent"
9. Apply patch, and notice you can't create categories for "no parent" any more

Note

Can someone please review if this is a good solution? I know it solves the issue, but I don't know exactly why that piece of code was placed

[zero-24]

@n9iels that code was added here by @sanderpotjer see #3401

---

_{This comment was created with the J!Tracker Application at issues.joomla.org/joomla-cms/8083.}

[n9iels]

@zero-24 thanks, I couldn't find that.

Difficult situation, the solution of #3401 cause this one.
So we have to find a solution that makes sure that:

• Level 0 will not unset if the the parameter "Create" is set on allowed in: Article -> Permissions
• Level 0 will unset in other situations (assuming that creating categories on level 0 is only allowed when you have full create access)

[Webdongle]

I have tested this item ✅ successfully on 4f50046

Works as expected ... Prevents users creating Categories outside of the hierarchy of the Category they have Edit Permission for

---

_{This comment was created with the J!Tracker Application at issues.joomla.org/joomla-cms/8083.}

[n9iels]

@Webdongle Thanks for testing! But it seems like the solution for this issue is not ready yet. Please test again when we have good solution :)

[Webdongle]

OK ... as soon as I get the email will test it

[coolcat-creations]

I can´t access anything to create content (before applying the patch)

---

_{This comment was created with the J!Tracker Application at issues.joomla.org/joomla-cms/8083.}

[roland-d]

Hello @n9iels

Thank you for your contribution.

The last comment here was on 24th October 2015. So the question is, Is this issue/pull request still valid?
If no reply is received within 4 weeks we will close this issue.

Thanks for understanding!

---

_{This comment was created with the J!Tracker Application at issues.joomla.org/joomla-cms/8083.}

[roland-d]

No need for PLT to decide here yet. I have contacted Niels and asked him to update this issue. Let's wait a bit longer before closing this.

---

_{This comment was created with the J!Tracker Application at issues.joomla.org/joomla-cms/8083.}

[joomla-cms-bot]

This PR has received new commits.

CC: @Webdongle

---

_{This comment was created with the J!Tracker Application at issues.joomla.org/joomla-cms/8083.}

[joomla-cms-bot]

This PR has received new commits.

CC: @Webdongle

---

_{This comment was created with the J!Tracker Application at issues.joomla.org/joomla-cms/8083.}

[joomla-cms-bot]

This PR has received new commits.

CC: @Webdongle

---

_{This comment was created with the J!Tracker Application at issues.joomla.org/joomla-cms/8083.}

[joomla-cms-bot]

This PR has received new commits.

CC: @Webdongle

---

_{This comment was created with the J!Tracker Application at issues.joomla.org/joomla-cms/8083.}

[n9iels]

Ignore the commit, there is on this moment no solution for this problem. Because the - no parent - (level 0) has no access right. So $user->authorise() can't determine if the current has is allowed to edit this level.

I close this PR now.