Details
-
Bug
-
Resolution: Fixed
-
High
-
1.5.1, 1.6.0
-
None
Description
This bug was discovering while testing EZP-26377.
If your user group has wide permissions and you define a new more restrictive policy, eZ Platform will ignore the wider policies.
This should not happen.
Steps to reproduce
By the default, the editor role has the following policies:
Module | Function | Limitation |
---|---|---|
content | all functions | No limitations |
user | login | No limitations |
Change the editor role adding the following policy:
Classes 4 & 3 are the user and the user group. Section 2 is the user section.
Module | Function | Limitation |
---|---|---|
content | all functions | No limitations |
user | login | No limitations |
content | read | Class( 4, 3 ), Section( 2 ) |
Log with any editor user
All the content is gone. eZ Platform is considering only the content\read\Class( 4, 3 )\Section( 2 ) policy and ignoring the content\all functions\No limitations policy.
Attachments
Issue Links
- relates to
-
EZP-26475 Infinite loader if embed Content item is unreachable
- Closed