Mercurial > p > roundup > code
diff website/issues/html/query.item.html @ 5286:578b5294e888
Update to current classic config. Fixes issue with users being able to
see all queries even ones that they do not own and are not public.
| author | John Rouillard <rouilj@ieee.org> |
|---|---|
| date | Sun, 24 Sep 2017 19:13:04 -0400 |
| parents | c2d0d3e9099d |
| children |
line wrap: on
line diff
--- a/website/issues/html/query.item.html Sun Sep 24 19:08:47 2017 -0400 +++ b/website/issues/html/query.item.html Sun Sep 24 19:13:04 2017 -0400 @@ -1,3 +1,15 @@ <!-- query.item --> -<span tal:replace="structure context/renderQueryForm" /> - +<span tal:condition="context/is_view_ok" tal:replace="structure + context/renderQueryForm" /> +<tal:block tal:condition="not:context/is_view_ok"> + <tal:block metal:use-macro="templates/page/macros/icing"> + <title metal:fill-slot="head_title">You can not view query</title> + <tal:block metal:fill-slot="body_title"> + You can not view query. + </tal:block> + <td class="content" metal:fill-slot="content"> + You are not allowed to view <span tal:content="context/_classname"/> + with id <span tal:content="context/id"/> + </td> + </tal:block> +</tal:block>