Details

    • Type: Bug
    • Status: Closed
    • Resolution: Fixed
    • Affects Version/s: 5.2.3
    • Fix Version/s: None
    • Labels:
      None
    • Environment:
      java 1.6, Liferay bundled with tomcat 6
    • Liferay Contributor's Agreement:
      Accept

      Description

      To reproduce this bug:
      1. Registered user placed blogs portlet on his public page
      2. This used creates blog item and kept "Public" checkbox checked-in
      3. As result, "public" blog-item is created
      4. Any anonymous user can go to user's public page and see this blog item (because Guest role has "VIEW" permission for this blog-item)
      5. Now, registered User "Edit" this blog-item
      6. Edit form has no "Public" checkbox, so, changing only blog-item text user saved changes

      Expected result : anonymous user still can access this blog item
      Actual Result: anonymous user cannot access this blog-item

      It happens because during updating blogItem "Guest" role lost permission "VIEW"

      Of course, possible workaround every time after blog-item is edited go to blog-item Permission and set "VIEW" permission for Guest role, but - for end-users it is not comfortable - since during editing blogItem permissions was not changed by user - they should not be changed in DB

        Attachments

          Issue Links

            Activity

              People

              • Votes:
                0 Vote for this issue
                Watchers:
                1 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved:
                  Days since last comment:
                  9 years, 13 weeks, 5 days ago

                  Packages

                  Version Package