Details
-
Bug
-
Resolution: Fixed
-
Medium
-
3.8.6
-
None
-
Operating System: Linux Debian
PHP Version: 4.4.4
Database and version: MySQL 4.1
Description
I created a role with the following policies :
- content / read / no limitation
- user / login / siteaccess mysite_admin
- user / selfedit / no limitation
- user / password / no limitation
- user / preferences / no limitation
When I log in with a user with this role assigned to him, a click on "Change Information" gives me an eZp Kernel 1 error
I should be able to edit my user profile.
If I add content / edit / class(user), I can, but for all other users too.
It seems that kernel/content/edit.php don't use eZContentObject::canEdit() anymore (it was the case in eZp3.6), though only eZContentObject::canEdit() check for the selfedit policy (eZContentObject::checkAccess doesn't).
Attachments
Issue Links
- relates to
-
EZP-23132 "user/selfedit" policy requires at least one "content/create" or one "content/edit" policy
- Closed