Improve consistency of policy enforcement on new repository edit UI
ClosedPublic
Actions

Authored by epriestley on Oct 25 2013, 9:11 PM.

Tags

None

Referenced Files

	Unknown Object (File)
	Mon, Jan 27, 5:08 PM

	Unknown Object (File)
	Sun, Jan 12, 11:38 PM

	Unknown Object (File)
	Dec 10 2024, 2:38 PM

	Unknown Object (File)
	Dec 9 2024, 4:21 AM

	Unknown Object (File)
	Dec 8 2024, 7:28 AM

	Unknown Object (File)
	Nov 28 2024, 4:40 AM

	Unknown Object (File)
	Nov 24 2024, 5:12 PM

	Unknown Object (File)
	Nov 19 2024, 8:44 PM

View All Files

Subscribers

aran

Details

Reviewers

btrahan

Maniphest Tasks

Restricted Maniphest Task

Commits

Restricted Diffusion Commit
rPe81bad9ba21f: Improve consistency of policy enforcement on new repository edit UI

Summary

Ref T2231. The policy rules are a little murky right now: the "Edit Repository" link requires CAN_EDIT, but the actualy page doesn't. Instead, require CAN_EDIT for the edit page.

Test Plan

As a user without CAN_EDIT, viewed a repository and clicked the edit link.

Diff Detail

Lint

Lint Skipped

Unit

Tests Skipped

Event Timeline

btrahan accepted this revision.Oct 25 2013, 10:48 PM

btrahan added inline comments.

src/applications/diffusion/controller/DiffusionRepositoryCreateController.php
28	this should be CAN_EDIT, right? (On that note, I could imagine CAN_CREATE being desired for repositories (and projects))

epriestley added inline comments.Oct 25 2013, 10:54 PM

src/applications/diffusion/controller/DiffusionRepositoryCreateController.php
28	Ack, good catch! (We have a create policy for projects already and I'll add one for repositories pretty soon.)

Closed by commit rPe81bad9ba21f (authored by @epriestley).

Revision Contents
Changeset List

Path

Size

src/

applications/

diffusion/

controller/

DiffusionRepositoryCreateController.php

13 lines

DiffusionRepositoryEditController.php

95 lines

Diff 16693

View Options

src/applications/diffusion/controller/DiffusionRepositoryCreateController.php