Task #52500

Work Package #49943: Security

Editors must only be able to access their own workspaces

Added by Andreas Förthner about 8 years ago. Updated about 8 years ago.

Status:
Resolved
Priority:
Must have
Assignee:
-
Category:
Content Editing
Target version:
Start date:
2013-10-03
Due date:
% Done:

100%

Estimated time:

Description

Currently the node services allows any authenticated editor to access all nodes in all workspaces.

createNode of the NodeConverter has to get a runtime evaluation checking the workspace of the node.

#1

Updated by Gerrit Code Review about 8 years ago

  • Status changed from New to Under Review

Patch set 1 for branch master has been pushed to the review server.
It is available at https://review.typo3.org/24376

#2

Updated by Gerrit Code Review about 8 years ago

Patch set 2 for branch master has been pushed to the review server.
It is available at https://review.typo3.org/24376

#3

Updated by Gerrit Code Review about 8 years ago

Patch set 3 for branch master has been pushed to the review server.
It is available at https://review.typo3.org/24376

#4

Updated by Gerrit Code Review about 8 years ago

Patch set 4 for branch master has been pushed to the review server.
It is available at https://review.typo3.org/24376

#5

Updated by Andreas Förthner about 8 years ago

  • Status changed from Under Review to Resolved
  • % Done changed from 0 to 100

Applied in changeset commit:2d82fbdd82ebacdde81d81fe5ad4df54fa11c151.

Also available in: Atom PDF