Feature #96672
open
Make the user TSconfig of non-admins debuggable in the backend
0%
Description
Currently the final User TS config of the currently logged in user can be viewed and debugged in the module
System > Configuration > $GLOBALS['BE_USER']->getTSConfig() (User TSconfig)
However this being a System module it cannot be accessed by non-admins.
It is therefore not possible to view or debug the User TS config of non-admins.
I would therefore suggest to move this action into the info module. Then an admin can simulate a backend user and have a look at the TSconfig of the current user.
A currently logged in user can only see his own pageTSconfig which is revealed to him anyway.
Updated by Georg Ringer almost 3 years ago
just as a note: even though the editor can only see the own configuration doesn't mean that this is good from security aspect because this can reveal data which is not to be meant for editors