backoffice: redirect unauthorized custom views to default view (#83573) #839
Loading…
Reference in New Issue
No description provided.
Delete Branch "wip/83573-unauthorized-custom-view-do-redirect"
Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?
09645f065c
tod8c35410d4
d8c35410d4
to21eb5916df
21eb5916df
to4ef9464328
WIP: backoffice: redirect unauthorized custom views to default view (#83573)to backoffice: redirect unauthorized custom views to default view (#83573)@ -3199,0 +3212,4 @@
),
)
# remove custom view reference from path
url = get_request().get_path_query().replace('/%s/' % component, '/')
Ici le component n'est pas forcément de la forme user-whatever, ça me semble un peu plus risqué que dans le cas précédent de faire un remplacement général...?
Il y aurait juste le risque d'une vue personnalisée appelée "backoffice", "management" ou "data", mais on n'a rien qui empêcherait ces noms, j'ai donc modifié en :
4ef9464328
to3d5adf5ee2