RT 4.0.13

author: Ivan Kohler <ivan@freeside.biz> 2013-06-04 00:21:24 -0700
committer: Ivan Kohler <ivan@freeside.biz> 2013-06-04 00:21:24 -0700
commit: 679854b8bbc65d112071111bbd7f34a6a481fb30 (patch)
tree: dda0862fdf7853f4f61e4cf155c8bbc93768c994 /rt/share/html/Ticket/Display.html
parent: 9b328d940af56b9924a342192ebb0790478fa705 (diff)
1 files changed, 6 insertions, 4 deletions
diff --git a/rt/share/html/Ticket/Display.html b/rt/share/html/Ticket/Display.html
index 0a29c9763..0ff9e0b47 100755
--- a/rt/share/html/Ticket/Display.html
+++ b/rt/share/html/Ticket/Display.html
@@ -2,7 +2,7 @@
 %#
 %# COPYRIGHT:
 %#
-%# This software is Copyright (c) 1996-2012 Best Practical Solutions, LLC
+%# This software is Copyright (c) 1996-2013 Best Practical Solutions, LLC
 %#                                          <sales@bestpractical.com>
 %#
 %# (Except where explicitly superseded by other copyright notices)
@@ -189,10 +189,12 @@ if ($ARGS{'id'} eq 'new') {
 
         push @Actions, ProcessTicketReminders( ARGSRef => \%ARGS, TicketObj => $TicketObj );
 
-        # XXX: we shouldn't block actions here if user has no right to see the ticket,
-        # but we should allow him to see actions he has done
         unless ($TicketObj->CurrentUserHasRight('ShowTicket')) {
-            Abort("No permission to view ticket");
+            if (@Actions) {
+                Abort("A change was applied successfully, but you no longer have permissions to view the ticket", Actions => \@Actions);
+            } else {
+                Abort("No permission to view ticket");
+            }
         }
         if ( $ARGS{'MarkAsSeen'} ) {
             $TicketObj->SetAttribute(
author	Ivan Kohler <ivan@freeside.biz>	2013-06-04 00:21:24 -0700
committer	Ivan Kohler <ivan@freeside.biz>	2013-06-04 00:21:24 -0700
commit	679854b8bbc65d112071111bbd7f34a6a481fb30 (patch)
tree	dda0862fdf7853f4f61e4cf155c8bbc93768c994 /rt/share/html/Ticket/Display.html
parent	9b328d940af56b9924a342192ebb0790478fa705 (diff)