Author: jablko
Date: Mon Oct 25 15:30:05 2010
New Revision: 8488
Log:
Update authorization check, fixes issue 1829
Modified:
trunk/apps/qubit/modules/term/actions/editAction.class.php
Modified: trunk/apps/qubit/modules/term/actions/editAction.class.php
==============================================================================
--- trunk/apps/qubit/modules/term/actions/editAction.class.php Mon Oct 25
15:18:04 2010 (r8487)
+++ trunk/apps/qubit/modules/term/actions/editAction.class.php Mon Oct 25
15:30:05 2010 (r8488)
@@ -69,7 +69,8 @@
else
{
// Check authorization to create term
- if (!QubitAcl::check($this->resource, 'create', array('taxonomyId' =>
$request->taxonomyId)))
+ $params =
$this->context->routing->parse(Qubit::pathInfo($request->taxonomy));
+ if (!QubitAcl::check($this->resource, 'create', array('taxonomyId' =>
$params['id'])))
{
QubitAcl::forwardUnauthorized();
}
--
You received this message because you are subscribed to the Google Groups
"Qubit Toolkit Commits" group.
To post to this group, send email to [email protected].
To unsubscribe from this group, send email to
[email protected].
For more options, visit this group at
http://groups.google.com/group/qubit-commits?hl=en.
