Skip to content

"manager" URLs not blocked for content that doesn't belong to you #51

New issue
New issue
Open
Open
"manager" URLs not blocked for content that doesn't belong to you#51
Labels
bugSomething isn't workinggood first issueGood for newcomers
@TrueBrain

Description

@TrueBrain
TrueBrain
opened on Dec 26, 2020

If after login I for example visit:

https://bananas.staging.openttd.org/manager/newgrf/66724456

It acts like I can edit this package, while I really cannot. When I press save, the API will block the request and not processed it, but it does look weird from a user perspective.

Guess we should check for permissions when visiting those pages, and show an error instead of an edit page.

Metadata

Metadata

Assignees

No one assigned

    Labels

    bugSomething isn't workinggood first issueGood for newcomers

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions