[Tickets #10470] Re: full creator permissions on a calendar "all authenticated" can show+read does not imply add privileges
noreply at bugs.horde.org
noreply at bugs.horde.org
Fri Nov 8 13:28:07 UTC 2013
DO NOT REPLY TO THIS MESSAGE. THIS EMAIL ADDRESS IS NOT MONITORED.
Ticket URL: http://bugs.horde.org/ticket/10470
------------------------------------------------------------------------------
Ticket | 10470
Updated By | mwani at fkf.mpg.de <mwani at fkf.mpg.de>
Summary | full creator permissions on a calendar "all
| authenticated" can show+read does not imply add
| privileges
Queue | Kronolith
Version | 3.0.7
Type | Bug
State | Assigned
Priority | 1. Low
Milestone |
Patch |
Owners | Horde Developers, Jan Schneider
------------------------------------------------------------------------------
vsz at punk.oc.chemie.tu-darmstadt.de (2012-11-27 19:18) wrote:
> OK I just tested kronolith 3.0.16 traditional view and with
>
> Authenticated Users: show, read, delegate
> Creator as show, read, edit, delete, delegate
> Result: Nobody can add new events.
>
> With
> Authenticated Users: show, read, *edit*, delegate
> Creator as show, read, edit, delete, delegate
> Result: users can now create new events and only delete events that
> they own. The problem is users can still edit events that they did
> not create yet if I remove the edit for authenticated users then
> they can't create any events.
>
> Thanks for the suggestion Ralf as this is a big improvement as at
> least users can no longer delete events that they did not create.
I just upgraded from H4 to Kronolith H5 4.0.1 and the behaviour
described above is still present. In traditional view as well as in
dynamic view and for both system and standard user calendars.
Has there been progress with this over the last year? Are there new
workarounds?
More information about the bugs
mailing list