[TYPO3-core] RFC: Feature #10585: Enable BE-User to change their OpenID
Steffen Gebert
steffen at steffen-gebert.de
Wed Sep 16 14:19:00 CEST 2009
On Wed, 16 Sep 2009 01:48:04 +0200, Steffen Gebert
<steffen at steffen-gebert.de> wrote:
>
> We need a way to check access to the field other than only
> admin/non-admin
> (e.g. accessUserFunc which returns boolean?).
> Otherwise users, which aren't not allowed to change OpenID by their group
> settings, could change it by modifying POST request.
>
> Could you implement this as addition to #11869?
I've just added an explanation, why this access check is needed to #11896
[1]
Steffen
[1]
http://lists.netfielders.de/pipermail/typo3-team-core/2009-September/030323.html
More information about the TYPO3-team-core
mailing list