Opened 4 years ago

Closed 4 years ago

Last modified 4 years ago

#13652 closed enhancement (fixed)

SelfDeletePlugin does not make an exclusion for TRAC_ADMIN

Reported by: solstice333 Owned by: Ryan J Ollos
Priority: normal Component: SelfDeletePlugin
Severity: normal Keywords: SelfDeletePlugin, Permissions
Cc: Trac Release: 1.2


SelfDeletePlugin is able to make it so no one can delete someone else's attachment including someone holding the TRAC_ADMIN permission. Is it possible to make an exception for someone holding the TRAC_ADMIN permission?

Attachments (0)

Change History (3)

comment:1 Changed 4 years ago by Ryan J Ollos

Owner: set to Ryan J Ollos
Status: newaccepted

comment:2 Changed 4 years ago by Ryan J Ollos

Resolution: fixed
Status: acceptedclosed

In 17560:

TracSelfDelete 2.1: Consult other permission policies if result is not true

This allows the standard policies to continue functioning
normally when SelfDeletePolicy is used, allowing users
to delete attachments.

Check attachment author to determine if user can
delete the attachment.

Fixes #13652.

comment:3 Changed 4 years ago by Ryan J Ollos

TracSelfDelete 2.1 has been published to pypi:TracSelfDelete.

Modify Ticket

Change Properties
Set your email in Preferences
as closed The owner will remain Ryan J Ollos.
The resolution will be deleted. Next status will be 'reopened'.

Add Comment

E-mail address and name can be saved in the Preferences.

Note: See TracTickets for help on using tickets.