Mercurial > p > roundup > code
diff doc/upgrading.txt @ 3015:41fbdb465da1 maint-0.7
upgrading notes to fix security assertions
| author | Richard Jones <richard@users.sourceforge.net> |
|---|---|
| date | Wed, 15 Dec 2004 00:11:50 +0000 |
| parents | 07166758e412 |
| children |
line wrap: on
line diff
--- a/doc/upgrading.txt Wed Dec 15 00:07:58 2004 +0000 +++ b/doc/upgrading.txt Wed Dec 15 00:11:50 2004 +0000 @@ -13,6 +13,35 @@ .. contents:: +Migrating from 0.7.10 +============================= + +0.7.10 Security assertions +-------------------------- + +Some security assertions were missing in relation to stored query editing. +You should edit the following tal statements into the ``page.html`` template: + + <p class="classblock"> + <b>Your Queries</b> (<a href="query?@template=edit">edit</a>)<br> + +becomes:: + + <p class="classblock" + tal:condition="python:request.user.hasPermission('View', 'query')"> + <b>Your Queries</b> (<a href="query?@template=edit">edit</a>)<br> + +And the ``issue.search.html`` template: + + <tr> + <th>Query name**:</th> + +becomes:: + + <tr tal:condition="python:request.user.hasPermission('Edit', 'query')"> + <th>Query name**:</th> + + Migrating from 0.7.2 to 0.7.3 =============================