[wp-trac] [WordPress Trac] #22417: _wp_translate_postdata() should use current_user_can( $ptype->cap->edit_post, $post_id )
WordPress Trac
noreply at wordpress.org
Wed Nov 21 16:52:55 UTC 2012
#22417: _wp_translate_postdata() should use current_user_can(
$ptype->cap->edit_post, $post_id )
-----------------------------+-----------------------
Reporter: danielbachhuber | Owner: westi
Type: defect (bug) | Status: reopened
Priority: normal | Milestone: 3.5
Component: Role/Capability | Version:
Severity: normal | Resolution:
Keywords: |
-----------------------------+-----------------------
Changes (by nacin):
* status: closed => reopened
* resolution: fixed =>
Comment:
Chatted about this with westi in IRC. A few points:
* The second part of this bug report can be answered by (and further
addressed in) #22415.
* [22769] looks good, but after it landed, I noticed that 'edit_post'
could get away with being outside of the post_author == user_ID block,
instead letting the meta capability handle that part. Of course, that
check may still be necessary for $update = false (which I'll aim to
eliminate in 3.6). So, re-opening for review.
--
Ticket URL: <http://core.trac.wordpress.org/ticket/22417#comment:9>
WordPress Trac <http://core.trac.wordpress.org/>
WordPress blogging software
More information about the wp-trac
mailing list