Comments of password-protected posts should not be shown to logged-in users without edit capability
|Reported by:||kraftbj||Owned by:|
Currently, if an user creates a password-protected post, Authors and lower roles cannot view the post neither on the front end nor in the backend, unless it was their own post (or they have the password).
However, they can see comments of those posts while viewing edit-comments.php.
Suggested that comments of password-protected posts should not be displayed to users without ability to view/edit the post in the admin.