Hello Everyone, I just had a conversation with a colleague and figured that if a users has permissions REPORT_* (Not sure exactly the minimum, but with REPORT_ADMIN it works), the user can create a report and use SQL to access every table on the system. Is there a way to prevent this?
Regards. -- You received this message because you are subscribed to the Google Groups "Trac Users" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To post to this group, send email to [email protected]. Visit this group at https://groups.google.com/group/trac-users. For more options, visit https://groups.google.com/d/optout.
