00238: need to fix problem with attr password + delete

Summary: need to fix problem with attr password + delete
Created: 2004-12-17 13:32
Status: Closed - fixed for 2.2.5
Category: Bug
From: Pm
Assigned:
Priority: 31
Version: 2.0.beta10
OS:

Description: Need to fix the problem with being able to delete pages with attr passwords set.

See also PITS:00248.

How should it be dealt with such pages? Another call to RetrieveAuthPage() for "attr" permissions could be blocked at another group/site level. If the permissions are in the form of @authusergroups, it becomes very complicated. A simpler solution could be to abort the processing if there is some passwdattr= page attribute. --Petko July 09, 2009, at 02:39 PM

Implemented with
if(@$new['passwdattr']>'' && !CondAuth($pagename, 'attr')) Abort();
--Petko August 24, 2009, at 06:49 PM