00238: need to fix problem with attr password + delete
Summary: need to fix problem with attr password + delete
Created: 2004-12-17 13:32
Status: Closed - fixed for 2.2.5
Description: Need to fix the problem with being able to delete pages with attr passwords set.
See also PITS:00248.
How should it be dealt with such pages? Another call to RetrieveAuthPage() for "attr" permissions could be blocked at another group/site level. If the permissions are in the form of @authusergroups, it becomes very complicated. A simpler solution could be to abort the processing if there is some
passwdattr= page attribute. --Petko July 09, 2009, at 02:39 PM
if(@$new['passwdattr']>'' && !CondAuth(
$pagename, 'attr')) Abort();
--Petko August 24, 2009, at 06:49 PM