mirror of
https://github.com/gristlabs/grist-core.git
synced 2024-09-28 11:10:46 +00:00
307966e84f
Summary: Backstory: to make examples easier to play with, we: * Add a special FullCopies permission to let anyone fork/copy them regardless of other access rules * Open the examples in "prefork" mode by default That means a random person can open an example and already feel like an owner of it. Getting to this point requires some gymnastics on the back end. As soon as the person makes any change to the document they become truly the owner (of their fork), and life is simple for the back end. But, if that person does "View As" to look at the preforked document, that is a step too far for the back end - a user, with a special somewhat complicated exception allowing them to act as an owner for some purposes, now wants to pretend to be another user. The logic for this on the back end was doable, but looked hard to review and be confident of, with now three identities with subtle nuances in their interrelationship. So with this diff, if a non-owner attempts to "View As" another user on a prefork, the client will just fork the document first. This is in principle not necessary, but is much simpler from a security perspective. Test Plan: extended test Reviewers: georgegevoian Reviewed By: georgegevoian Differential Revision: https://phab.getgrist.com/D3179 |
||
|---|---|---|
| .. | ||
| AccessRules.ts | ||
| ACLColumnList.ts | ||
| ACLFormulaEditor.ts | ||
| ACLSelect.ts | ||
| ACLUsers.ts | ||
| PermissionsWidget.ts | ||