#38961 closed defect (bug) (invalid)
REST API: User with `promote_users` cap can't add existing users to a site
Reported by: | ocean90 | Owned by: | jeremyfelt |
---|---|---|---|
Milestone: | Priority: | normal | |
Severity: | normal | Version: | 4.7 |
Component: | REST API | Keywords: | has-unit-tests needs-patch |
Focuses: | multisite | Cc: |
Description
Adding an existing user to a site should be done by performing a PUT request to the user resource on the other site, see ticket:38526:7. This works if the current user can edit users.
But core also allows users with the promote_users
capability to add existing users:
Attachments (1)
Change History (9)
This ticket was mentioned in Slack in #core by helen. View the logs.
8 years ago
#3
@
8 years ago
- Milestone changed from Awaiting Review to 4.7
- Owner set to jeremyfelt
- Status changed from new to assigned
Taking a look at this now for 4.7.
#4
@
8 years ago
- Milestone changed from 4.7 to 4.8
I started poking at this, but it seems like something that should be thought through some more first. Let's leave it at edit_users
for now and then follow up in early 4.8.
This ticket was mentioned in Slack in #core-restapi by jeremyfelt. View the logs.
8 years ago
#6
@
8 years ago
take a holistic look at multisite behaviour across all resources to make sure it works well.
I'd be tempted to leave this until 4.8 and take a holistic look at multisite behaviour across all resources to make sure it works well. (We fixed #38526 in 4.7 since it was a bug, not to add full multisite functionality.)
@jeremyfelt Is this important enough to pull into 4.7?