1. 01 Nov, 2012 2 commits
  2. 30 Oct, 2012 2 commits
    • Thomas Sibley's avatar
    • Alex Vandiver's avatar
      Descriptions of just-created transactions should always be readable · b49b0dba
      Alex Vandiver authored
      If a user had permissions to execute a change, they should always have
      permission to read the description of the transaction that is returned.
      This case is triggered when a user changes a ticket's queue to one they
      do not have rights in, for example; without it, the UI merely displays
      the unhelpful status change "Permission denied" in @Actions, despite an
      action clearly having happened.
      
      While the simplest method for ensuring that the transaction can be read
      would be to load it as the system user, this causes the returned message
      to be in the system user's localization, not the current user's.  Add an
      explicit flag which allows ->CurrentUserCanSee to be overridden for this
      one object.
      b49b0dba
  3. 25 Oct, 2012 13 commits
  4. 24 Oct, 2012 4 commits
  5. 23 Oct, 2012 4 commits
  6. 18 Oct, 2012 2 commits
  7. 15 Oct, 2012 3 commits
  8. 10 Oct, 2012 1 commit
  9. 09 Oct, 2012 4 commits
  10. 08 Oct, 2012 5 commits