Details
-
Bug
-
Resolution: Fixed
-
Medium
-
4.0.1
-
None
Description
EZSA2008-002, the security patch to prevent editing pending items prior to approval actually removes or prevents an important piece of functionality, the ability to implement workflow-based data collection via eZWorkflowEventType::STATUS_FETCH_TEMPLATE_REPEAT.
Prior to security patching, it was possible to build an eventtype that implemented templates through STATUS_FETCH_TEMPLATE_REPEAT, and through the use of /content/edit and the PublishButton action you could accept further input from the user throughout that workflow process.
Changes to content/edit.php due to EZSA2008-002 have removed the possibility of editing such pending items which in turn removes the ability to implement such an eventtype.
Is there a possible workaround or improvement that could be made to content/edit to restore the option to accept and process such workflow based template inputs?
The offending changes was on or about line 480 in kernel/content/edit.php, the removal of
$version->attribute( 'status' ) != eZContentObjectVersion::STATUS_PENDING
Attachments
Issue Links
- relates to
-
EZP-15727 Workflow status STATUS_FETCH_TEMPLATE_REPEAT disappeared
- Closed