Workflow rights are not applied on the content edit page

Description

Steps

  • Add a (non-administrative) user in a group

  • Add a workflow and add it to a content type

  • Add a read right for the added group, but not a write right

  • Open a document with only read rights

  • Result: the user can write as well

  • Note: even removing the read rights allows the user the write (however the document disappears from the content navigator)

Technical tasks

None

Deployment actions

Verify app/config/security.yml:

access_decision_manager:
strategy: unanimous

Activity

Show:
API
May 5, 2017, 12:07 PM

.Schatting van 8.5 uur is geaccepteerd door Integrated Marijn (in opdracht ingevoerd door Marijn Otte).

Assignee

Unassigned

External issue ID

None

Client

Integrated Marijn

Min. hours

None

Dev hour estimate

None

Sprint

None

Fix versions

Configure