[Tickets #4480] Only allow editing of your own ACLs
bugs@bugs.horde.org
bugs at bugs.horde.org
Tue Oct 3 04:32:55 PDT 2006
DO NOT REPLY TO THIS MESSAGE. THIS EMAIL ADDRESS IS NOT MONITORED.
Ticket URL: https://dev.horde.org/horde/whups/ticket/?id=4480
-----------------------------------------------------------------------
Ticket | 4480
Updated By | Jan Schneider <jan at horde.org>
Summary | Only allow editing of your own ACLs
Queue | IMP
Version | HEAD
Type | Enhancement
State | Assigned
Priority | 1. Low
Owners | Horde Developers, Matt Selsky
-----------------------------------------------------------------------
Jan Schneider <jan at horde.org> (2006-10-03 04:32) wrote:
> Or should the canEdit function be modified to make the $user argument
> optional, and if not set, then do the MYRIGHTS command above?
Neither, the method should be used as is, and you patch looks like it does
this. I don't exactly follow the logic without applying the patch, but do
you have in mind that the driver could connect as a regular user or the
cyrus user?
Beside that, that authentication stuff has to go into a separate private
method to avoid the code duplication.
More information about the bugs
mailing list