Web Client: Staff can edit their own accounts
Bug #1722378 reported by
Terran McCanna
This bug affects 1 person
| Affects | Status | Importance | Assigned to | Milestone | |
|---|---|---|---|---|---|
| Evergreen |
Won't Fix
|
Undecided
|
Unassigned | ||
Bug Description
In 3.0.0:
Staff that could not edit their own accounts in the xul client can edit their own accounts in the web client.
Revision history for this message
| Jason Etheridge (phasefx) wrote | #1 |
Revision history for this message
| Terran McCanna (tmccanna) wrote | #2 |
| Changed in evergreen: | |
| status: | New → Won't Fix |
To post a comment you must log in.
Privilege escalation via profile is still prevented, at least. It looks like it's just a UI check in the XUL client that disables the Save button if the user being edited is the same person logged into the client.