You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
The DataObjectManager class will show edit & delete links for objects based on a global permission, ignoring whether any items would return false for canEdit() or canDelete(). For example, let's say that someone added fine-grained permissions to files in the assets folders. These permissions would simply be ignored.
NOTE: The underlying ComplexTableField has the same problem.
The text was updated successfully, but these errors were encountered:
hdrlab
added a commit
to hdrlab/DataObjectManager
that referenced
this issue
Feb 20, 2014
This is a quick-n'-dirty patch to make DOM hide "action" links such as edit and delete based on per-item permissions (i.e., addresses issue unclecheese#75). While a more complete solution is needed (there are other points in the code that should be updated), it does only show the action links when those actions are allowed.
The DataObjectManager class will show edit & delete links for objects based on a global permission, ignoring whether any items would return false for canEdit() or canDelete(). For example, let's say that someone added fine-grained permissions to files in the assets folders. These permissions would simply be ignored.
NOTE: The underlying ComplexTableField has the same problem.
The text was updated successfully, but these errors were encountered: