Actions
Task #77188
open
Improve error-message for access to files outside of allowed filemounts
Status:
New
Priority:
Should have
Assignee:
-
Category:
Backend User Interface
Target version:
-
Start date:
2016-07-21
Due date:
% Done:
0%
Estimated time:
TYPO3 Version:
10
PHP Version:
Tags:
Complexity:
medium
Sprint Focus:
Description
Requirements:
- Have images in a file-storage somewhere
- Create a text-with-image content and add that image
- Edit that content with a user with limited rights
- Make sure that user only has filemounts so that he/she can't access the above added image
- User should have access to sys_file_metadata and sys_file_reference
- Image is shown in the content-element
- File-metadata can be overridden (sys_file_reference)
- But clicking the edit-icon the original metadata for that file cannot be edited because the file is outside of allowed filemounts
Currently only a very generic error is shown:
"Access to table sys_file_metadata for user 2 was denied by a makeEditForm_accessCheck hook"
(which is an AccessDeniedHookException)
How specific could we be in this case? I assume we may not disclose the original path the user does not have access to. So maybe just some "That file is outside of the allowed filemounts for this user"?
Updated by 
Updated by 
Updated by Anonymous
Actions