[wp-trac] [WordPress Trac] #24153: Sticky flag gets unset if author doesn't have publish_posts permission
WordPress Trac
noreply at wordpress.org
Tue May 26 00:11:15 UTC 2015
#24153: Sticky flag gets unset if author doesn't have publish_posts permission
----------------------------------------+-----------------------------
Reporter: archon810 | Owner: chriscct7
Type: defect (bug) | Status: accepted
Priority: normal | Milestone: 4.3
Component: Role/Capability | Version: 3.5
Severity: normal | Resolution:
Keywords: has-patch needs-unit-tests | Focuses: administration
----------------------------------------+-----------------------------
Changes (by obenland):
* keywords: has-patch => has-patch needs-unit-tests
Comment:
Replying to [comment:17 chriscct7]:
> We should do a permissions check before changing as the patch does as
opposed to adding a hidden field or something can be manipulated by
editing the source output of a page or using a POST replay
Agreed. Could you check the other instances where we stick/unstick posts
for permissions? This would also benefit from getting unit tests.
--
Ticket URL: <https://core.trac.wordpress.org/ticket/24153#comment:18>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list