Mercurial > p > roundup > code
comparison doc/upgrading.txt @ 3015:41fbdb465da1 maint-0.7
upgrading notes to fix security assertions
| author | Richard Jones <richard@users.sourceforge.net> |
|---|---|
| date | Wed, 15 Dec 2004 00:11:50 +0000 |
| parents | 07166758e412 |
| children |
comparison
equal
deleted
inserted
replaced
| 3014:fa49f3fe6afa | 3015:41fbdb465da1 |
|---|---|
| 10 then you don't need to do anything. If you're upgrading from 0.5.6 to | 10 then you don't need to do anything. If you're upgrading from 0.5.6 to |
| 11 0.6.8 though, you'll need to check the "0.5 to 0.6" and "0.6.x to 0.6.3" | 11 0.6.8 though, you'll need to check the "0.5 to 0.6" and "0.6.x to 0.6.3" |
| 12 steps. | 12 steps. |
| 13 | 13 |
| 14 .. contents:: | 14 .. contents:: |
| 15 | |
| 16 Migrating from 0.7.10 | |
| 17 ============================= | |
| 18 | |
| 19 0.7.10 Security assertions | |
| 20 -------------------------- | |
| 21 | |
| 22 Some security assertions were missing in relation to stored query editing. | |
| 23 You should edit the following tal statements into the ``page.html`` template: | |
| 24 | |
| 25 <p class="classblock"> | |
| 26 <b>Your Queries</b> (<a href="query?@template=edit">edit</a>)<br> | |
| 27 | |
| 28 becomes:: | |
| 29 | |
| 30 <p class="classblock" | |
| 31 tal:condition="python:request.user.hasPermission('View', 'query')"> | |
| 32 <b>Your Queries</b> (<a href="query?@template=edit">edit</a>)<br> | |
| 33 | |
| 34 And the ``issue.search.html`` template: | |
| 35 | |
| 36 <tr> | |
| 37 <th>Query name**:</th> | |
| 38 | |
| 39 becomes:: | |
| 40 | |
| 41 <tr tal:condition="python:request.user.hasPermission('Edit', 'query')"> | |
| 42 <th>Query name**:</th> | |
| 43 | |
| 15 | 44 |
| 16 Migrating from 0.7.2 to 0.7.3 | 45 Migrating from 0.7.2 to 0.7.3 |
| 17 ============================= | 46 ============================= |
| 18 | 47 |
| 19 0.7.3 Configuration | 48 0.7.3 Configuration |