[wp-trac] [WordPress Trac] #23391: User in contributor role can add images to post only via the text editor
WordPress Trac
noreply at wordpress.org
Tue Feb 5 07:34:27 UTC 2013
#23391: User in contributor role can add images to post only via the text editor
-----------------------------+-----------------------------
Reporter: mark-k | Type: enhancement
Status: new | Priority: normal
Milestone: Awaiting Review | Component: Role/Capability
Version: | Severity: normal
Keywords: |
-----------------------------+-----------------------------
1. Create a user with contributor role
2. start new post with it
3. notice there is no "add media" button anywhere
4. switch to text editing
5. use the img button to insert a URL to a valid img on the web
6. request approval for the post
7. let admin/editor approve it
8. go the the post's URL and notice that the image is shown
So, it is not that contributors are not allowed to use images, it is just
that WP makes it hard to do so.
Either HTML needs to be sanitized and have all img tags removes for
contributors, or access to the media library should be allowed for
contributors denying only access to uploading. I vote for the second
option.
--
Ticket URL: <http://core.trac.wordpress.org/ticket/23391>
WordPress Trac <http://core.trac.wordpress.org/>
WordPress blogging software
More information about the wp-trac
mailing list