search

joshp23 / YOURLS-AuthMgrPlus

Seperates user data & manages authorization with role-based access controls (RBAC)
GNU General Public License v3.0
34 stars 19 forks source link

amp_role_capabilities not respected in Yourls 1.9.2 #57

Open noob404yt opened 1 year ago

noob404yt commented 1 year ago

I tried setting a user as editor both using the config file and using this plugin (for user database) - https://gist.github.com/ediathome/e9287408d4dc36a7742dfe7ebd581e86

In both these instances, though ampRoles::Editor => array doesn't have ampCap::ManagePlugins, I am still able to manage plugins as an editor. I also tried removing ampCap::DeleteURL from editor. But, even that didn't change anything.

Is the current version - 2.3.1 incompatible with Yourls 1.9.2? Any help is appreciated.

noob404yt commented 1 year ago

Tried downgrading upto 1.8.2, but get the same result. Also tried going below upto 1.7.2, but it won't install on my local environment. /admin/install.php displays empty page. Guessing it's a PHP version issue.

Update: Tried this on my web host and it works perfectly. But, when it comes to Xampp (both on Windows and Linux), this doesn't seem to work. Do I have to enable something?