|
If you were logged in you would be able to see more operations.
|
|
|
| Resolution Date: |
19/Jul/05 02:31 PM
|
|
PageManager and related implementations do not enforce Page/Folder security constraints/permissions consistantly across all APIs. PageManager.getFolder() and PageManager.newPage() probably need to restrict VIEW and EDIT access assuming an end user is attempting to perform these operations as part of a site management/customization process.
Will need to review site admin portlets to ensure that tightened APIs do not hinder operation.
|
|
Description
|
PageManager and related implementations do not enforce Page/Folder security constraints/permissions consistantly across all APIs. PageManager.getFolder() and PageManager.newPage() probably need to restrict VIEW and EDIT access assuming an end user is attempting to perform these operations as part of a site management/customization process.
Will need to review site admin portlets to ensure that tightened APIs do not hinder operation.
|
Show » |
| No work has yet been logged on this issue.
|
|
Task
Resolved
Minor
Cleanup PageManager to enforce Page/Folder security symmetrically
