https://www.redmine.org/https://www.redmine.org/favicon.ico?16793021292015-07-04T08:41:53ZRedmineRedmine - Defect #20206: Members w/o view issues permission are able to list issues on public projects if the non member role has the permissionhttps://www.redmine.org/issues/20206?journal_id=646452015-07-04T08:41:53ZJean-Philippe Langjp_lang@yahoo.fr
<ul></ul><p>This happens because your "Non member" role has the "View issues" permission.<br />Issue.visible and Issue#visible? doesn't behave the same in this particular case. Issue.visible considers the non member permissions even for members, but Issue#visible? does not. I think that members should not have less permissions than non members and behaviour should be aligned on the Issue.visible scope.</p> Redmine - Defect #20206: Members w/o view issues permission are able to list issues on public projects if the non member role has the permissionhttps://www.redmine.org/issues/20206?journal_id=650522015-07-25T08:54:35ZJean-Philippe Langjp_lang@yahoo.fr
<ul><li><strong>Status</strong> changed from <i>New</i> to <i>Closed</i></li><li><strong>Assignee</strong> set to <i>Jean-Philippe Lang</i></li><li><strong>Resolution</strong> set to <i>Fixed</i></li></ul> Redmine - Defect #20206: Members w/o view issues permission are able to list issues on public projects if the non member role has the permissionhttps://www.redmine.org/issues/20206?journal_id=650532015-07-25T08:56:13ZJean-Philippe Langjp_lang@yahoo.fr
<ul><li><strong>Subject</strong> changed from <i>"View all issues"lists issues nevertheless role has no "View Issues"</i> to <i>Members w/o view issues permission are able to list issues on public projects if the non member role has the permission</i></li></ul> Redmine - Defect #20206: Members w/o view issues permission are able to list issues on public projects if the non member role has the permissionhttps://www.redmine.org/issues/20206?journal_id=650612015-07-25T10:39:01ZToshi MARUYAMA
<ul><li><strong>Related to</strong> <i><a class="issue tracker-1 status-10 priority-4 priority-default" href="/issues/19602">Defect #19602</a>: Non-Reporter role cannot see issue list</i> added</li></ul>