need a truer / safer permissions check for editing images

HomeSupportImage Storeneed a truer / safer permissions check for editing images

Viewing 3 posts - 1 through 3 (of 3 total)
  • Author
    Posts
  • #52854
    Dave
    Participant

    For security reasons, we keep file editing disabled in wp-confic.  However, a client reported they cannot edit an image; Clicking Edit under a thumb in the Gallery Admin yields a “Cheatin’ uh?” in the popup.

    The upload_files permission is what WP uses to determine if the role can add Media.  Any other permission name could do, but this seemed a natural fit and allows us to enforce that online file editing stays safely disabled.

    Anyway, just requesting this be changed in the next release.  Thanks again!

     

    #52897
    Xpark Media
    Keymaster

    @dave,

    for security reason we removed part of your message but we agree, we will be making the change on the next release.

    #53008
    Dave
    Participant

    thanks

Viewing 3 posts - 1 through 3 (of 3 total)
  • You must be logged in to reply to this topic.