summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorbbaetz%student.usyd.edu.au <>2002-06-15 10:52:59 +0200
committerbbaetz%student.usyd.edu.au <>2002-06-15 10:52:59 +0200
commite6efba1369ac50596398c8b6061a22e2801cf301 (patch)
treef4b6c2c3058b5d572496b060ee014796cb7b6982
parent599e1db4613cfe18449b725d1f73ee55819f62c7 (diff)
downloadbugzilla-e6efba1369ac50596398c8b6061a22e2801cf301.tar.gz
bugzilla-e6efba1369ac50596398c8b6061a22e2801cf301.tar.xz
Bug 151695 - assignee/qa contact can't access secure bugs
r=myk x2
-rw-r--r--globals.pl8
1 files changed, 6 insertions, 2 deletions
diff --git a/globals.pl b/globals.pl
index 99af6ffa4..4f93820ff 100644
--- a/globals.pl
+++ b/globals.pl
@@ -800,8 +800,12 @@ sub SelectVisible {
# cause all rows to be returned! We work arround this by adding an not isnull
# test to the JOINed cc table. See http://lists.mysql.com/cgi-ez/ezmlm-cgi?9:mss:11417
# Its needed, even though it shouldn't be
- $replace .= "OR (bugs.reporter_accessible = 1 AND bugs.reporter = $userid)
- OR (bugs.cclist_accessible = 1 AND selectVisible_cc.who = $userid AND not isnull(selectVisible_cc.who))";
+ $replace .= "OR (bugs.reporter_accessible = 1 AND bugs.reporter = $userid)" .
+ " OR (bugs.cclist_accessible = 1 AND selectVisible_cc.who = $userid AND not isnull(selectVisible_cc.who))" .
+ " OR (bugs.assigned_to = $userid)";
+ if (Param("useqacontact")) {
+ $replace .= " OR (bugs.qa_contact = $userid)";
+ }
}
$replace .= ") AND ";