accessCheck required in entity_legal_user_delete

Created on 14 February 2023, almost 2 years ago
Updated 23 May 2023, over 1 year ago

Problem/Motivation

Unable to delete a user because there is an access check missing in the hook: entity_legal_user_delete

Steps to reproduce

Cancel a user and its content on D10 using beta4

Proposed resolution

Add an access check.

🐛 Bug report
Status

Closed: duplicate

Version

3.0

Component

Code

Created by

🇧🇪Belgium Janec

Live updates comments and jobs are added and updated live.
Sign in to follow issues

Comments & Activities

  • Issue created by @Janec
  • @janec opened merge request.
  • First commit to issue fork.
  • Status changed to Needs review over 1 year ago
  • 🇩🇪Germany geek-merlin Freiburg, Germany
  • 🇩🇪Germany geek-merlin Freiburg, Germany

    Code is straightforward. Re-triggered test with valid settings.

  • Status changed to Closed: duplicate over 1 year ago
  • 🇷🇴Romania claudiu.cristea Arad 🇷🇴

    We've released 4.0.0-alpha1 which fixed also this failure. But if you update to 4.0.0-alpha1 make sure you read the IMPORTANT release notes. We don't plan to maintain the 3.0.x branch anymore. Closing as duplicate.

Production build 0.71.5 2024