view.access permission does not prevent access to the view #885
Labels
No Milestone
No project
No Assignees
1 Participants
Notifications
Due Date
No due date set.
Dependencies
No dependencies set.
Reference: joomla/Component-Builder#885
Loading…
Reference in New Issue
No description provided.
Delete Branch "%!s(<nil>)"
Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?
It's impossible to restrict access to an admin view. It only works for custom admin views.
The view.access permission should cast this action but doesn't.
Hmm wow, always thought that still worked, I know it did at some point. So we must have broken this during some changes and did not realize it at the time. Thanks for this report... we must fix this.