Comments (4)
Confirmed in my dev environment, introduced in v4.4.47
- ✅ super admin: can save any enterprise details
- ✅ owner: can save any enterprise details
- ❌ manager: can view, but can't save any details
- ❌ manager of enterprise with permissions to edit profile: can view, but can't save any details
- ✅ manager of other enterprise: can't view or edit, unauthorised.
from openfoodnetwork.
I did a manual bisect of the last release and found that my pull request broke it:
from openfoodnetwork.
Looking at the network request, the embedded form in the form contains an authenticity token. The form submission contains both tokens and the second one from the connected apps panel is used. This is probably raising the unauthorized error in Rails because the token doesn't match.
from openfoodnetwork.
I had another user report similar issues today, just now in Canada. I haven't had time to look into it yet, but when she was trying to download the product csv template she kept getting redirected to the login screen (when she was already logged in) and was getting an 'unauthorized' error.
from openfoodnetwork.
Related Issues (20)
- Allow forgery protection in tests
- Voucher code field at checkout only allows one character HOT 1
- [BUU] Columns broken after cloning HOT 1
- Release v4.5.0 Pommes Frittes HOT 2
- As a shopper, I can access a specific product thanks to a direct link
- [inventory] Producer column is empty in review page HOT 2
- [Flaky] spec/system/consumer/checkout/tax_not_incl_spec.rb
- Release v4.5.1 HOT 6
- [BUU] Activate admin_style_v3 for all super admins HOT 1
- Filtering product by supplier property breaks when enterprise has custom sorting by category set HOT 4
- [BUU] Activate admin_style_v3 for 25% of users HOT 1
- Creating a new variant is selecting the first producer and first category of the dropdown HOT 8
- [Inventory] Products duplicated and not sorted alphabetically
- Release
- Error in /orders/*: frame window is not ready (Stripe) HOT 16
- [Inventory] Products missing from Inventory HOT 6
- [BUU] error 500 on admin/products HOT 14
- Image upload error
- Release v4.5.2 Schorle HOT 2
- Product description displaying jumbled or overlapping lines HOT 2
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from openfoodnetwork.