RT 4.0.13

author: Ivan Kohler <ivan@freeside.biz> 2013-06-04 00:16:28 -0700
committer: Ivan Kohler <ivan@freeside.biz> 2013-06-04 00:16:28 -0700
commit: 7588a4ac90a9b07c08a3107cd1107d773be1c991 (patch)
tree: 55b8bedb5f899e705da0ba7f608267943bf89e94 /rt/share/html/Ticket/Display.html
parent: 98d2b25256055abb0dfcb9f586b434474fa97afd (diff)
1 files changed, 6 insertions, 4 deletions
diff --git a/rt/share/html/Ticket/Display.html b/rt/share/html/Ticket/Display.html
index 0a29c9763..0ff9e0b47 100755
--- a/rt/share/html/Ticket/Display.html
+++ b/rt/share/html/Ticket/Display.html
@@ -2,7 +2,7 @@
 %#
 %# COPYRIGHT:
 %#
-%# This software is Copyright (c) 1996-2012 Best Practical Solutions, LLC
+%# This software is Copyright (c) 1996-2013 Best Practical Solutions, LLC
 %#                                          <sales@bestpractical.com>
 %#
 %# (Except where explicitly superseded by other copyright notices)
@@ -189,10 +189,12 @@ if ($ARGS{'id'} eq 'new') {
 
         push @Actions, ProcessTicketReminders( ARGSRef => \%ARGS, TicketObj => $TicketObj );
 
-        # XXX: we shouldn't block actions here if user has no right to see the ticket,
-        # but we should allow him to see actions he has done
         unless ($TicketObj->CurrentUserHasRight('ShowTicket')) {
-            Abort("No permission to view ticket");
+            if (@Actions) {
+                Abort("A change was applied successfully, but you no longer have permissions to view the ticket", Actions => \@Actions);
+            } else {
+                Abort("No permission to view ticket");
+            }
         }
         if ( $ARGS{'MarkAsSeen'} ) {
             $TicketObj->SetAttribute(
author	Ivan Kohler <ivan@freeside.biz>	2013-06-04 00:16:28 -0700
committer	Ivan Kohler <ivan@freeside.biz>	2013-06-04 00:16:28 -0700
commit	7588a4ac90a9b07c08a3107cd1107d773be1c991 (patch)
tree	55b8bedb5f899e705da0ba7f608267943bf89e94 /rt/share/html/Ticket/Display.html
parent	98d2b25256055abb0dfcb9f586b434474fa97afd (diff)