mirror of https://github.com/abpframework/abp.git
Browse Source
Remove the ownership-based fallback that allowed post creators to delete their own posts in Detail.cshtml. Deletion now strictly requires BloggingPermissions.Posts.Delete, centralizing authorization on explicit permissions to enforce consistent access control.pull/25207/head
1 changed files with 1 additions and 1 deletions
Loading…
Reference in new issue