Diagramly doesn't reflect remove attachment permissions of current user.

Rostislav Simonik July 18, 2013

Diagramly allows to delete diagram including diargram attachment by clicking on remove diagram toolbar button for user who is not allowed to remove attachments. Would be great if that button just removes macro but keeps diagrams attachment.

Impact of current implementation is that user can intentionaly or just by accident click remove toolbar button and diagram is lost without possibility to recover.

4 answers

1 accepted

1 vote
Answer accepted
Boris
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
July 25, 2013

Version 2.6.1 has just been released with reworked security checks.

Rostislav Simonik August 1, 2013

Yes, it's resolved

0 votes
Rostislav Simonik July 18, 2013

Confluence version 4.3.5

Diagramly plugin version 2.6.0

OS: Linux

Have you setuped permissions correctly

User B must have

for pages

  • add page -> allowed
  • remove page -> allowed

attachments

  • add attachment -> allowed
  • remove attachment -> restricted
0 votes
Boris
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
July 18, 2013

I tried deleting the diagram with user A on a page that is restricted to user B.

It resulted in an 'Access Denied' dialog. When page was refreshed, 'Edit' and 'Delete' icons were missing from the toolbar.

What were your reproduction steps for the issue?

And what is your configuration, Confluence version, plugin version, OS?

0 votes
Boris
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
July 18, 2013

The issue is being investigated.

Suggest an answer

Log in or Sign up to answer
TAGS
AUG Leaders

Atlassian Community Events