on bugs page can see a branch merge proposal which cannot be seen directly
Bug #750607 reported by
Andrea Corbellini
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
Launchpad itself |
Fix Released
|
Critical
|
William Grant |
Bug Description
Looking at bug #643366 I see a branch attached and its merge proposal. Trying to access the merge proposal, I get a 'Not allowed here (Sorry, you don't have permission to access this page.)' error. But this makes no sense to me because:
* I can see the branch, its revisions and I can download it;
* from the bug report, I can see the merge proposal status and the votes;
* I'm able to download the diff associated to the merge proposal.
So I think the cases are two:
1. either the merge proposal is public (and therefore I should be able to access it);
2. or the merge proposal is private (and I shouldn't be able to know anything about it).
Related branches
lp://staging/~wgrant/launchpad/bug-750607
- Henning Eggers (community): Approve
-
Diff: 110 lines (+53/-9)3 files modifiedlib/canonical/launchpad/security.py (+15/-8)
lib/lp/code/tests/test_branch.py (+8/-0)
lib/lp/code/tests/test_branchmergeproposal.py (+30/-1)
Changed in launchpad: | |
assignee: | nobody → William Grant (wgrant) |
status: | Triaged → In Progress |
tags: |
added: qa-ok removed: qa-needstesting |
Changed in launchpad: | |
milestone: | none → 11.06 |
Changed in launchpad: | |
status: | Fix Committed → Fix Released |
tags: | added: security |
tags: | added: hardening |
To post a comment you must log in.
Its probably the stacked on branch or the target branch that you can't see (or both).