tonyair/silverstripe-framework
1
0
Fork 0
mirror of https://github.com/silverstripe/silverstripe-framework synced 2024-10-01 05:39:10 +02:00
Code Issues Projects Releases Wiki Activity
5cbd2dbeb4
silverstripe-framework/security
History
Sean Harvey 5cbd2dbeb4 BUG CMSProfileController::Member_ProfileForm() respecting canEdit() permissions on Member 
CMSProfileController currently checks canView() which ensures that a logged in CMS
Member can access the profile controller, but when saving the record on Member_ProfileForm
there is no check for canEdit(), so extended permissions don't get respected.

This adds a check for canEdit() in Member_ProfileForm, and adds some functional tests
to check permissions.
2012-09-07 11:24:47 +12:00
..
Authenticator.php MINOR Update @package values to match renaming sapphire 2012-04-15 10:50:19 +12:00
BasicAuth.php MINOR Update @package values to match renaming sapphire 2012-04-15 10:50:19 +12:00
ChangePasswordForm.php MINOR Replacing deprecated static function calls to Director with 2012-05-23 21:50:02 +12:00
Group.php MINOR Fixed duplicate help text on Group->getCMSFields() 2012-06-13 15:04:40 +02:00
GroupCsvBulkLoader.php MINOR Update @package values to match renaming sapphire 2012-04-15 10:50:19 +12:00
LoginAttempt.php MINOR Update @package values to match renaming sapphire 2012-04-15 10:50:19 +12:00
LoginForm.php MINOR Update @package values to match renaming sapphire 2012-04-15 10:50:19 +12:00
Member.php BUG CMSProfileController::Member_ProfileForm() respecting canEdit() permissions on Member 2012-09-07 11:24:47 +12:00
MemberAuthenticator.php MINOR Update @package values to match renaming sapphire 2012-04-15 10:50:19 +12:00
MemberCsvBulkLoader.php MINOR Update @package values to match renaming sapphire 2012-04-15 10:50:19 +12:00
MemberLoginForm.php API CHANGE Deprecate Member::sendInfo(), use Member_ChangePasswordEmail and Member_ForgotPasswordEmail class directly instead. 2012-05-05 10:04:46 +12:00
MemberPassword.php BUGFIX: Increase size of varchar fields on MemberPassword to match those defined in Member. This fixes issues when the password hash is longer than 50 characters, and was being truncated when saved in MemberPassword. 2012-05-07 15:04:25 +12:00
PasswordEncryptor.php BUGFIX Declare PasswordEncryptor_Blowfish::get_cost() as static 2012-06-15 12:13:33 +12:00
PasswordValidator.php MINOR Update @package values to match renaming sapphire 2012-04-15 10:50:19 +12:00
Permission.php MINOR Update @package values to match renaming sapphire 2012-04-15 10:50:19 +12:00
PermissionCheckboxSetField.php MINOR Switching _t() calls from sprintf() to using injection parameters (#7170) 2012-05-01 22:17:00 +02:00
PermissionProvider.php MINOR Update @package values to match renaming sapphire 2012-04-15 10:50:19 +12:00
PermissionRole.php MINOR Update @package values to match renaming sapphire 2012-04-15 10:50:19 +12:00
PermissionRoleCode.php MINOR Update @package values to match renaming sapphire 2012-04-15 10:50:19 +12:00
RandomGenerator.php FIX: check GetRandom() exists for RandomGenerator 2012-07-01 21:05:10 +12:00
Security.php API CHANGE: Add Security::ignore_disallowed_actions() to allow site features to be disabled when permissions have failed, rather than redirecting to the log-in form. (Trac #7097) 2012-06-15 15:17:48 +12:00
SecurityToken.php API: add SecurityToken::reset() as a shortcut for regenerating a secure token. 2012-07-01 20:53:58 +12:00