[livejournal] r18664: LJSUP-8039: Deny non-members to view/edi...: changelog

[livejournal] r18664: LJSUP-8039: Deny non-members to view/edi...

Committer: ssafronova

LJSUP-8039: Deny non-members to view/edit/delet entries in business-sensetive communities - LJSUP-8308: author can't delete entries

U   trunk/cgi-bin/ljprotocol.pl

Modified: trunk/cgi-bin/ljprotocol.pl
===================================================================
--- trunk/cgi-bin/ljprotocol.pl	2011-03-22 08:32:32 UTC (rev 18663)
+++ trunk/cgi-bin/ljprotocol.pl	2011-03-22 08:49:14 UTC (rev 18664)
@@ -2181,7 +2181,8 @@
     return fail($err,320) if $spam;
 
     # new rule from 14 march 2011: user is allowed to edit only if he is allowed to do new post
-    return undef unless check_altusage($req, $err, $flags);
+    # but is allowed to delete its own post
+    return undef unless check_altusage($req, $err, $flags) or $req->{'event'} !~ /\S/;
 
     my $u = $flags->{'u'};

Post a new comment
Error

Anonymous comments are disabled in this journal
We will log you in after post

We will log you in after post

We will log you in after post

We will log you in after post

We will log you in after post

Anonymously

switch

LiveJournal

Facebook

Twitter

OpenId

Google

MailRu

VKontakte

Anonymously

default userpic

Your reply will be screened

Your IP address will be recorded

Preview comment

Help
0 comments

Post a new comment
0 comments

Log in

[livejournal] r18664: LJSUP-8039: Deny non-members to view/edi...

Error