Context Navigation

Modify ↓

#13652 closed enhancement (fixed)

SelfDeletePlugin does not make an exclusion for TRAC_ADMIN

Reported by:	solstice333	Owned by:	Ryan J Ollos
Priority:	normal	Component:	SelfDeletePlugin
Severity:	normal	Keywords:	SelfDeletePlugin, Permissions
Cc:		Trac Release:	1.2

Description

SelfDeletePlugin is able to make it so no one can delete someone else's attachment including someone holding the TRAC_ADMIN permission. Is it possible to make an exception for someone holding the TRAC_ADMIN permission?

Attachments (0)

Change History (3)

comment:1 Changed 5 years ago by Ryan J Ollos

Owner:	set to Ryan J Ollos
Status:	new → accepted

comment:2 Changed 5 years ago by Ryan J Ollos

Resolution:	→ fixed
Status:	accepted → closed

In 17560:

TracSelfDelete 2.1: Consult other permission policies if result is not true

This allows the standard policies to continue functioning
normally when SelfDeletePolicy is used, allowing users
with TRAC_ADMIN, TICKET_ADMIN and WIKI_DELETE
to delete attachments.

Check attachment author to determine if user can
delete the attachment.

Fixes #13652.

comment:3 Changed 5 years ago by Ryan J Ollos

TracSelfDelete 2.1 has been published to pypi:TracSelfDelete.

Modify Ticket

Change Properties

Summary:
Type:	Priority:
Component:	Severity:
Keywords:	Cc:	Set your email in Preferences
Trac Release:

Action

leave as closed The owner will remain Ryan J Ollos.

reopen The resolution will be deleted. Next status will be 'reopened'.

Add Comment

Your email or username:

E-mail address and name can be saved in the Preferences.

You may use WikiFormatting here.

Attachments ↑ Description ↑

Note: See TracTickets for help on using tickets.

Download in other formats: