silverstripe-framework/docs/en
Ingo Schommer fb784af738 API Enforce $allowed_actions in RequestHandler->checkAccessAction()
See discussion at https://groups.google.com/forum/?fromgroups#!topic/silverstripe-dev/Dodomh9QZjk

Fixes an access issue where all public methods on FormField were allowed,
and not checked for $allowed_actions. Before this patch you could e.g.
call FormField->Value() on the first field by using action_Value.

Removes the following assertion because it only worked due to RequestHandlingTest_AllowedControllerExtension
*not* having $allowed_extensions declared: "Actions on magic methods are only accessible if explicitly allowed on the controller."
2013-06-24 14:50:40 +02:00
..
_images Added docs for composer 2012-11-03 18:00:58 +13:00
changelogs API Enforce $allowed_actions in RequestHandler->checkAccessAction() 2013-06-24 14:50:40 +02:00
howto Merge remote-tracking branch 'origin/3.0' into 3.1 2013-06-24 14:39:09 +02:00
installation Improve docs (mostly spelling) 2013-05-29 18:23:25 +02:00
misc Update module development, remove outdated release steps 2013-06-15 12:06:25 +12:00
reference Merge remote-tracking branch 'origin/3.0' into 3.1 2013-06-24 14:39:09 +02:00
topics API Enforce $allowed_actions in RequestHandler->checkAccessAction() 2013-06-24 14:50:40 +02:00
tutorials Merge remote-tracking branch 'origin/3.0' into 3.1 2013-05-09 10:34:20 +02:00
index.md Corrected a number of inbound links pointing to the documentation. 2012-10-09 14:53:47 +13:00