Bug #36626
Content security does not work correctly
| Status: | Resolved | Start date: | 2012-04-26 | |
|---|---|---|---|---|
| Priority: | Must have | Due date: | ||
| Assigned To: | Andreas Förthner | % Done: | 100% |
|
| Category: | Security | |||
| Target version: | TYPO3 Flow Base Distribution - 1.1 beta 3 | |||
| PHP Version: | Complexity: | |||
| Has patch: | No | Affected Flow version: | FLOW3 1.1.0 beta 1 |
Description
With the introduction of Doctrine and other changes, content security ceased to work as as expected.
Related issues
Associated revisions
[TASK] Add functional tests for content security
This add some first basic functional tests for
content security.
Change-Id: Ib295ef13b5c8c84ae4f49ac181c242c72e38520e
Related: #36626
Releases: 1.1
[BUGFIX] Fix MethodSecurity functional test
After #36659 was fixed, the session handling works
as expected. That means, however, that if no account
is logged in, an AuthorizationRequiredException is
thrown on trying to access a restricted method.
The tests, however, anticipated an AccessDeniedException.
Change-Id: I6a7d9f8a75a1614ba1511e538fe5aad9c4c30f1f
Related: #36626
Related: #36659
Releases: 1.1
[FEATURE] Introduce ANY matcher for content security
Change-Id: I11e6e8d06cef6b6c48ccdb6c704d2ed2fc08711e
Related: #36626
Releases: 1.1
History
#1 Updated by Karsten Dambekalns about 3 years ago
- Target version changed from 1.1 to 1.1 RC1
#2 Updated by Karsten Dambekalns about 3 years ago
- Status changed from Accepted to Resolved
- % Done changed from 0 to 100
- Affected Flow version changed from Git master to FLOW3 1.1.0 beta 1
Aside from the missing DQL support this works fine by now.
#3 Updated by Karsten Dambekalns about 3 years ago
- Target version changed from 1.1 RC1 to 1.1 beta 3