[TYPO3-core] [TYPO3-security] RFC: EM displays insecure extensions
Rupert Germann
rg at rupert-germann.de
Tue Feb 20 14:45:23 CET 2007
Hi Karsten,
On Tuesday 20 February 2007 12:22, Karsten Dambekalns wrote:
...
> > Question: it seems that "-1" extensions will be in db but there is no
> > way to see them in EM. So, why do we need them in db at all?
>
> Your own extension will still be visible, even if insecure. That
> should work, at least. :)
it doesn't. Either 'AND NOT reviewstate < 0' or 'AND reviewstate > 0' is added
to the query so reviewstate=-1 will never be displayed.
greets
rupert
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: not available
Url : http://lists.netfielders.de/pipermail/typo3-team-core/attachments/20070220/e0d73cfe/attachment.pgp
More information about the TYPO3-team-core
mailing list