Give PhabricatorAuthPassword a formal CAN_EDIT policy
0ccf1410e057
Actions

Description

Give PhabricatorAuthPassword a formal CAN_EDIT policy

Summary:
Depends on D19585. Ref T13164. This is a precursor for D19586, which causes Editors to start doing more explicit CAN_EDIT checks.

Passwords have an Editor, but don't actually define a CAN_EDIT capability. Define one (you can edit a password if you can edit the object the password is associated with).

(Today, this object is always a User -- this table just unified VCS passwords and Account passwords so they can be handled more consistently.)

Test Plan:

With D19586, ran unit tests and got a pass.
Edited my own password.
Tried to edit another user's password and wasn't permitted to.

Reviewers: amckinley

Reviewed By: amckinley

Maniphest Tasks: T13164

Differential Revision: https://secure.phabricator.com/D19592

Details

Provenance

epriestley	Authored on Aug 16 2018, 5:07 PM
epriestley	Pushed on Aug 16 2018, 6:53 PM

Reviewer

amckinley

Differential Revision

D19592: Give PhabricatorAuthPassword a formal CAN_EDIT policy

Parents

rP7e29ec2e2a66: Move the "Can Lock Projects" check from requireCapabilities() to transaction…

Branches

Unknown

Tags

Unknown

Tasks

T13164: Plans: 2018 Week 31 - 33 Bonus Content

Build Status

Buildable 20640
Build 28048: Run Core Tests

Event Timeline

epriestley committed rP0ccf1410e057: Give PhabricatorAuthPassword a formal CAN_EDIT policy (authored by epriestley).Aug 16 2018, 6:53 PM

epriestley added a task: T13164: Plans: 2018 Week 31 - 33 Bonus Content.

Harbormaster completed building B20640: rP0ccf1410e057: Give PhabricatorAuthPassword a formal CAN_EDIT policy.Aug 16 2018, 6:54 PM

Changes (1)

Path

Size

src/

applications/

auth/

storage/

PhabricatorAuthPassword.php

rP0ccf1410e057

View Options

src/applications/auth/storage/PhabricatorAuthPassword.php