db/8555 It was tempting to change this `has_access` code: ```python # access is denied for this role break ``` to be `return False`. That would've fixed this situation, but made several other tests fail. Instead, I decided it'd be better to change a few non-core places, and not change the core has_access logic (even if maybe it deserves a refactor some day)
--- **[tickets:#8555] check blocked users better** **Status:** in-progress **Milestone:** unreleased **Created:** Tue Apr 02, 2024 09:39 PM UTC by Dave Brondsema **Last Updated:** Tue Apr 02, 2024 09:39 PM UTC **Owner:** Dave Brondsema If a user is blocked at the tool level, they still may be able to post in discussion forums that have additional ACLs. E.g. a forum within the discussion tool, which has anonymous posting allowed, or has developer only posting. --- Sent from forge-allura.apache.org because dev@allura.apache.org is subscribed to https://forge-allura.apache.org/p/allura/tickets/ To unsubscribe from further messages, a project admin can change settings at https://forge-allura.apache.org/p/allura/admin/tickets/options. Or, if this is a mailing list, you can unsubscribe from the mailing list.