#3525: Project index should check permissions
-------------------------------------+--------------------------------------
Reporter: [EMAIL PROTECTED] | Owner: cmlenz
Type: defect | Status: closed
Priority: normal | Milestone:
Component: general | Version: 0.9.6
Severity: normal | Resolution: wontfix
Keywords: |
-------------------------------------+--------------------------------------
Comment (by [EMAIL PROTECTED]):
Christopher, as I wrote in my original request: It needs to check if the
user (if any) actually has ''any'' permissions on the project in question.
No logged in user would mean that "anonymous" needs to have any
permissions. Of course you're right, the wiki start page just happens to
be the first page by default, it could change eventually...
Talking about the login: Instead of configuring multiple .../login URLs, I
simply protected the virtual host as a whole (since this is exactly what I
need here). trac happily accepts this information, no need to click on
"login", the user information is "just there". Why shouldn't it be
possible to take the REMOTE_USER on the projects list page and see if he's
got any permissions with those projects under TracEnvParentDir?
--
Ticket URL: <http://trac.edgewall.org/ticket/3525#comment:3>
The Trac Project <http://trac.edgewall.com/>
_______________________________________________
Trac-Tickets mailing list
[email protected]
http://lists.edgewall.com/mailman/listinfo/trac-tickets
