[CRM-6426] Tabs are rendered for User Account Profiles for which the user does not have permission - CiviCRM Issue Tracker

Details

Type: Bug
Status: Done/Fixed
Priority: Major
Resolution: Fixed/Completed
Affects Version/s: 3.1.5
Fix Version/s: 3.3.alpha
Component/s: CiviCRM Profile
Labels:
None

Description

Steps to reproduce. (Assumes Drupal.)

1.) Create a profile used for 'User Accounts'. Create ACL to grant access to this profile.
2.) Log-in as a user who does NOT have permission for the profile.
3.) On the user's Account page. Click Edit.

Results: A sub-tab is rendered for the unauthorized profile.

Suggested resolution: Profiles which a user does not have access to should not appear as sub-tabs on the user edit page.

Attachments

Options
- Sort By Name
- Sort By Date
- Ascending
- Descending
- Download All

Attachments

civicrm_tabs.patch
2010-08-13 22:01
1 kB
Matt Chapman

Activity

[CRM-6426] Tabs are rendered for User Account Profiles for which the user does not have permission

Matt Chapman added a comment - 2010-08-13 22:01

Here's a patch. It's written against 3.1.5, but hopefully will still apply. Anyway, it shows how to solve the bug.

Donald A. Lobo added a comment - 2010-08-13 22:14

thanx for the patch

Matt Chapman added a comment - 2010-08-13 22:45

I should also note that after applying the patch, it is necessary to flush Drupal's menu cache for the change to take effect.

Donald A. Lobo added a comment - 2010-08-31 22:03

added the drupal menu rebuild to the upgrade script. thanx for the patch

People

Assignee:

Donald A. Lobo

Reporter:

Matt Chapman

Dates

Created:

2010-06-30 2:40

Updated:

2010-08-31 22:03

Resolved:

2010-08-31 22:03