Category Management Inaccessible to non-Super Admin Roles

[jacksonmg]

Description of the problem Any member role who is not a super admin does not have the ability to manage categories (add/edit/delete) when permissions are granted. Edit screen is accessible but typical functionality (drag to reorder, checkboxes to delete and ability to add a new category) is not present.

How To Reproduce Steps to reproduce the behavior:

1. Create a new member role
2. Assign the following CP Access: Access control panel (yes), Access channel manager (yes), all channel categories checked.
3. Log in with a user with the content admin role
4. Attempt to edit categories through categories left nav.
5. New Category button is present, but clicking on it returns "Error: You are not authorized to access this page"

Screenshots / Videos / Template Code

Environment Details:

• Version: 6.4.14
• PHP Version 7.4.33
• MySQL Version [e.g. 5.7]
• OS: Amazon Linux 2023
• Web Server: nginx

Additional context Site was upgraded from an original 6.4.12 version. Not sure when this started as this was the first non-super admin role being added for client management.

[intoeetive]

@jacksonmg thank you for this report.

Category Groups have its own extra permissions, so what you need to do is go to Permissions tab for the desired category group and select the roles that you need to grant access to.

I do see however that there is some inconsistency on how the permissions here are being assigned and checked. We'll address this after some internal discussion

[jacksonmg]

Thanks for your speedy response. That indeed solves the problem.

[intoeetive]

We decided to postpone the change in https://github.com/ExpressionEngine/ExpressionEngine/pull/3845 (see discussion in comments there) in order to get better and more proper fix in future version when we address categories in more complex way