[MGNLFORUM-259] Creating thread- and forum-node should not require moderator-rights Created: 28/Apr/14 Updated: 14/May/14 Resolved: 07/May/14 |
|
| Status: | Closed |
| Project: | Forum (closed) |
| Component/s: | security |
| Affects Version/s: | 3.3 |
| Fix Version/s: | 3.3.1 |
| Type: | Bug | Priority: | Blocker |
| Reporter: | Christoph Meier | Assignee: | Christoph Meier |
| Resolution: | Fixed | Votes: | 0 |
| Labels: | None | ||
| Remaining Estimate: | Not Specified | ||
| Time Spent: | Not Specified | ||
| Original Estimate: | Not Specified | ||
| Issue Links: |
|
||||||||||||
| Template: |
|
||||||||||||
| Acceptance criteria: |
Empty
|
||||||||||||
| Date of First Response: | |||||||||||||
| Description |
|
Since the introduction of the "simple security model", a user with "some basic forum rights" should be able to create a thread (or forum, on EE with multi-site or multi-locale). What means "some basic forum right"? Note, that anonymous-user has the role "forum-pagecomments-user". During the very last changes on |
| Comments |
| Comment by Christoph Meier [ 06/May/14 ] |
|
isModerator() has been removed from the methods which are responsible to create thread- or forum-node; doesn't really make sense to have it there. |
| Comment by Christoph Meier [ 06/May/14 ] |
|
Commited onto branch " |
| Comment by Daniel Lipp [ 07/May/14 ] |
|
| Comment by Christoph Meier [ 07/May/14 ] |
|
Added test; removed commented line. |