The event manager ACL or user permissions doesn’t work as expected

  • Resolved Frank_QA

    (@frank_qa)


    10 years, 2 months ago

    The ACL doesn’t work as expected

    Issue: The event manager ACL (access control list) or user permissions doesn’t work as expected.

    1. Sub issue
    If a event was applied by a new customer the new customer an now registered user have no access to the booking into the wordpress account administration.
    Dosent work :
    /wp-admin/edit.php?post_type=event&page=events-manager-bookings

    But it works outside the account administration.
    /veranstaltungen/meine-buchungen/ (should be „/event-manager/my-bookings/“)

    2. Sub issue
    The new customer and registerd user have the possibility to create new events but the permission list decline these option.
    Eg options
    0 publish_events ?
    0 delete_others_events ?
    0 edit_others_events ?
    0 delete_events ?
    + edit_events ?
    + read_private_events ?
    But he has access to
    /wp-admin/edit.php?post_type=event [ok]
    /wp-admin/post-new.php?post_type=event [nok – security breach]

    http://wordpress.org/plugins/events-manager/

Viewing 13 replies - 1 through 13 (of 13 total)
  • Plugin Support angelo_nwl

    (@angelo_nwl)

    10 years, 2 months ago

    not quite sure what do you mean but did you mean user capabilities under Events > Settings > General > User Capabilities ?

    Thread Starter Frank_QA

    (@frank_qa)

    10 years, 2 months ago

    Good Morning from switzerland …

    And yes these settings ..

    Frank

    Philip John

    (@philipjohn)

    10 years, 2 months ago

    Hiya,

    I’m actually struggling to understand what the issue is here. Can you describe the issue in terms of a step-by-step reproduction please so we can try and replicate?

    Thanks,
    Phil

    Thread Starter Frank_QA

    (@frank_qa)

    10 years, 2 months ago

    Hiya ,

    It is difficult to describe the situation exactly when you can not upload pictures.
    What of the steps i given u dont understand ?

    Cheers

    Frank

    caimin_nwl

    (@caimin_nwl)

    10 years, 2 months ago

    The first issue sounds like you could have an incorrect setting somewhere. It might be worth taking a look at this tutorial to check everything is set correctly:

    http://wp-events-plugin.com/documentation/user-event-guest-submissions/

    For the second issue, what do you mean when you say, “The new customer and registerd user have the possibility to create new events but the permission list decline these option.”

    Do you mean that new events created by these users aren’t saved / published, or that the page isn’t visible? Or maybe something else?

    Thread Starter Frank_QA

    (@frank_qa)

    10 years, 2 months ago

    Right …

    read_private_events & edit_events was set/checked. But

    “Users can access the event registration forms and can view the events option in the admin area. “

    1. Sub issue
    “can view the events option in the admin area. ” He dont see his own booking. But I might understood that the user can see and edit his posting in this menu within the admin area.

    2. The user can create new event, still if publish_events is unchecked and only read_private_events & edit_events was checked.

    Frank

    caimin_nwl

    (@caimin_nwl)

    10 years, 2 months ago

    Ok, for 1 it sounds like you could have either no page or the wrong page selected under Event > Settings > Pages > Other Pages > Manage bookings page.

    There must be a page set and it needs to be different to the My bookings page above.

    For 2, the problem is that users can publish events even though they should not be able to?

    Thread Starter Frank_QA

    (@frank_qa)

    10 years, 2 months ago

    For 2, the problem is that users can publish events even though they should not be able to?

    yes..

    and i will try the first option tomorrow evening. cheers and thanks

    Philip John

    (@philipjohn)

    10 years, 2 months ago

    DO you have “Allow anonymous event submissions?” turned on in Events > Settings > General > Event Submission Forms ?

    Thanks

    Thread Starter Frank_QA

    (@frank_qa)

    10 years, 2 months ago

    Hi caimin_nwl you mean :
    Event > Settings > Pages > Other Pages >
    My Bookings

    My bookings page
    is set to “Meine Buchungen”

    Front-end management pages
    Edit events page
    Edit locations page
    Manage bookings page
    is set to “Different than above”

    “Allow anonymous event submissions?” turned on in Events > Settings > General > Event Submission Forms

    ==> no it isn´t

    caimin_nwl

    (@caimin_nwl)

    10 years, 2 months ago

    Do you have any other plugins or custom code running that are connected with editing user capabilities? If yes, does disabling them cure the problem?

    Thread Starter Frank_QA

    (@frank_qa)

    10 years, 2 months ago

    yes i had but disabling dosent work.

    Plugin Support angelo_nwl

    (@angelo_nwl)

    10 years, 2 months ago

    is it possible to share sample screenshots of your User Capability setup ?

Viewing 13 replies - 1 through 13 (of 13 total)
  • The topic ‘The event manager ACL or user permissions doesn’t work as expected’ is closed to new replies.