[wp-trac] [WordPress Trac] #9403: Quick Edit can unintentionally
alter post author
WordPress Trac
wp-trac at lists.automattic.com
Fri Mar 27 20:59:57 GMT 2009
#9403: Quick Edit can unintentionally alter post author
--------------------------+-------------------------------------------------
Reporter: sojweb | Owner:
Type: defect (bug) | Status: new
Priority: normal | Milestone: Unassigned
Component: Quick Edit | Version:
Severity: normal | Keywords: changes author
--------------------------+-------------------------------------------------
If a user authors a post, and that user's role is later switched to
something that doesn't have edit capabilities, using quick edit on their
post will switch the author to a different user. This shouldn't happen.
To reproduce:[[BR]]
* Create a test user with edit privileges[[BR]]
* Create post and set that user as the author[[BR]]
* Change that user's role to Subscriber[[BR]]
* Do a quick edit on the user's post[[BR]]
* The author of that post is always set to the user who did the quick
edit[[BR]]
The problem is that, if the user no longer has edit privileges, they are
left off the dropdown list of authors, but the blank field is filled in
with the current user in _wp_translate_postdata(). The solution is a
simple check in admin-ajax.php that fills in the field with the post
author if it is blank.
--
Ticket URL: <http://core.trac.wordpress.org/ticket/9403>
WordPress Trac <http://trac.wordpress.org/>
WordPress blogging software
More information about the wp-trac
mailing list