[development] Re: Drupal.org upgrade
Robert Douglass
rob at robshouse.net
Mon Feb 13 07:34:41 UTC 2006
Dries Buytaert wrote:
> I don't think anyone has been looking into this. It's a show- stopping
> issue so any help is appreciated. Likely a bug in CVS HEAD.
>
>> security issue: I'm able to outline pages
>> http://drupal.org/node/48790
>
>
> Unlike users on drupal.org, users on scratch.drupal.org have the
> 'maintain books' permission ... This is the result of a decision that
> was made recently on the documentation mailing list. The goal was to
> invite more people to make changes/edits to the handbook. Being able
> to outline book pages doesn't sound like a good idea though.
This sounds like a good case for splitting the outlining into a separate
permission?
More information about the development
mailing list