Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
[BUGFIX] Check "tables_modify" permissions in list module
If an editor has "view" permissions set for a table, but no "modify" permissions, the record list would still show many buttons related to modifying records, to the user: "Add", "Edit", "Copy", "Cut" actions. Trying to click one of these buttons would lead the editor to a broken page that just shows an infinite loading spinner. This patch now adds "tables_modify" permission checks to many places in the code. The following adjustments were made: - Check modify permissions on "copy" in RecordProvider (context menu) - Check table modify permissions in DatabaseRecordList Resolves: #83008 Resolves: #89307 Resolves: #23598 Releases: master, 9.5 Change-Id: Ia3140ba887573a314191ebba5672c85d93fe885c Reviewed-on: https://review.typo3.org/c/Packages/TYPO3.CMS/+/63696 Tested-by: TYPO3com <noreply@typo3.com> Tested-by: Georg Ringer <georg.ringer@gmail.com> Tested-by: Oliver Bartsch <bo@cedev.de> Tested-by: Benni Mack <benni@typo3.org> Reviewed-by: Georg Ringer <georg.ringer@gmail.com> Reviewed-by: Benni Mack <benni@typo3.org>
- Loading branch information
1 parent
52a85d5
commit 72bcf63
Showing
2 changed files
with
11 additions
and
6 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters