Project

General

Profile

Actions

Bug #16519

closed

BE-User is able to delete forbidden types of page content

Added by Nele over 17 years ago. Updated about 6 years ago.

Status:
Closed
Priority:
Should have
Assignee:
Category:
-
Target version:
-
Start date:
2007-04-10
Due date:
% Done:

0%

Estimated time:
TYPO3 Version:
4.0
PHP Version:
5.1
Tags:
Complexity:
Is Regression:
Sprint Focus:

Description

Example:

For a BE-Usergroup I disallowed to use the page content type "Sitemap" (Explicitly allow/deny field values: [Deny] Menu/Sitemap). A BE-User who is assigned to this group is not able to add a Sitemap or to edit an existing sitemap, but unfortunately he is able to delete this type of page content ...

Don't know, whether this is a desired TYPO3 behaviour, but this really makes no sense to me.

Templavoila 1.3.0

BE-Usergroup additional info:
Allowed excludefields:
Page: Content
Pagecontent: Content
(issue imported from #M5386)


Related issues 1 (0 open1 closed)

Related to TYPO3 Core - Bug #17203: Access Check for Content Elements before drawing the InterfaceClosed2007-04-12

Actions
Actions #1

Updated by Steffen Kamper over 17 years ago

As Dmitry told this is solved in newer versions of TV.
With classic Page Module it started in #17203

Actions #2

Updated by Chris topher over 14 years ago

I just rechecked that with the classic page module:
The forbidden element cannot be deleted; you can click the recycle bin, but than you get an error message.

It does not make sense to show control buttons, which cannot be used (like the recycle bin which is shown for all elements, regardless if permissions are set or not).
That does not make sense and should be changed.

Actions #3

Updated by Chris topher over 14 years ago

Resolved, the problem of this issue is not reproducable in current versions.

For the "Hide button if element not allowed" problem see #17203.

Actions #4

Updated by Benni Mack about 6 years ago

  • Status changed from Resolved to Closed
Actions

Also available in: Atom PDF