Capabilities with misplaced dependencies in edit_theme_options
|Reported by:||Clorith||Owned by:|
When setting capabilities for other groups, the user is unable to add to theme options with just edit_theme_options if they do not also have edit_posts capabilities. The user will be able to delete things like menu elements, but may not add them without this flag.
How to reproduce;
Edit capabilities of group removing all POSTS to hide the Posts Dashboard pages (works by just removing edit_posts as well).
Give group edit_theme_options capabilities to edit their own menus.
Users may now access the Theme Options, and may delete objects.
User can add menu items to the preview, but once they Save these, the changes are not committed without the edit_posts permission.
Change History (4)
- Component changed from Themes to Menus
- Focuses administration added
- Keywords needs-patch added
- Milestone changed from Awaiting Review to 3.9