[Tickets #10470] Re: full creator permissions on a calendar "all authenticated" can show+read does not imply add privileges
bugs at horde.org
bugs at horde.org
Tue Nov 27 19:18:15 UTC 2012
BITTE NICHT AUF DIESE NACHRICHT ANTWORTEN. NACHRICHTEN AN DIESE
E-MAIL-ADRESSE WERDEN NICHT GELESEN.
Ticket-URL: http://bugs.horde.org/ticket/10470
------------------------------------------------------------------------------
Ticket | 10470
Aktualisiert Von | vsz at punk.oc.chemie.tu-darmstadt.de
Zusammenfassung | full creator permissions on a calendar "all
| authenticated" can show+read does not imply add
| privileges
Warteschlange | Kronolith
Version | 3.0.7
Typ | Bug
Status | Assigned
Priorität | 1. Low
Milestone |
Patch |
Zuständige | Horde Developers, Jan Schneider
------------------------------------------------------------------------------
vsz at punk.oc.chemie.tu-darmstadt.de (2012-11-27 19:18) hat geschrieben:
> OK I just tested kronolith 3.0.16 traditional view and with
>
> Authenticated Users: show, read, delegate
> Creator as show, read, edit, delete, delegate
> Result: Nobody can add new events.
>
> With
> Authenticated Users: show, read, *edit*, delegate
> Creator as show, read, edit, delete, delegate
> Result: users can now create new events and only delete events that
> they own. The problem is users can still edit events that they did
> not create yet if I remove the edit for authenticated users then
> they can't create any events.
>
> Thanks for the suggestion Ralf as this is a big improvement as at
> least users can no longer delete events that they did not create.
I just upgraded from H4 to Kronolith H5 4.0.1 and the behaviour
described above is still present. In traditional view as well as in
dynamic view and for both system and standard user calendars.
Has there been progress with this over the last year? Are there new
workarounds?
More information about the bugs
mailing list