[Tickets #2074] Turba::getAddressBooks ignoring permissions parameter
bugs@bugs.horde.org
bugs at bugs.horde.org
Sun Jun 5 18:26:15 PDT 2005
DO NOT REPLY TO THIS MESSAGE. THIS EMAIL ADDRESS IS NOT MONITORED.
Ticket URL: http://bugs.horde.org/ticket/?id=2074
-----------------------------------------------------------------------
Ticket | 2074
Updated By | kevin_myer at iu13.org
Summary | Turba::getAddressBooks ignoring permissions parameter
Queue | Turba
Version | HEAD
State | Feedback
Priority | 1. Low
Type | Bug
Owners |
-----------------------------------------------------------------------
kevin_myer at iu13.org (2005-06-05 18:26) wrote:
Issue 1 is that for addressbooks which are marked readonly are still showing
up in lists where they shouldn't (i.e. New Contact). Users should never see
lists of addressbooks to add to that are readonly.
Issue 2 is that I misunderstood readonly and thought that it dealt with the
state of an addressbook (i.e. a readonly LDAP directory) versus PERM_EDIT.
So even if you have permissions to edit, its physically not possible. The
Auth::isAdmin check deals only with permissions and doesn't take into
account whether you physically can edit the source and I was assuming that
readonly meant the latter. So as the documentation stands in
prefs.php.dist, its a non-issue.
More information about the bugs
mailing list