Opened 13 years ago
Closed 13 years ago
#15437 closed defect (bug) (fixed)
Custom Post Type's capability_type and taxonomies used with the post type not considered when calling admin-ajax.php
| Reported by: |
|
Owned by: |
|
|---|---|---|---|
| Milestone: | 3.1 | Priority: | normal |
| Severity: | normal | Version: | 3.1 |
| Component: | Administration | Keywords: | has-patch |
| Focuses: | Cc: |
Description
For ajax-tag-search and get-tagcloud in admin-ajax.php, the custom post type with custom capability_type and taxonomies set to use with the post type is never considered as !current_user_can( 'edit_posts' ) is hard coded. For example, a custom post type MY_CPT with custom capability_type CPT allows users to have the capability edit_CPTs. A user who cannot edit_posts, but can edit_CPTs will see -1 when editing a MY_CPT post tags, if post_tags is in the array of taxonomies used with the post type.
Attachments (1)
Change History (9)
#2
@
13 years ago
- Keywords has-patch added; capability_type post_type admin-ajax get-tagcloud ajax-tag-search removed
- Severity changed from critical to normal
Patch.
Note: See
TracTickets for help on using
tickets.
It should go off of the taxonomy caps, I'd imagine.