php - Access Denied after applying Magento SUPEE 6285 -

-

i applied magento patch supee-6285 , having permissions issues non-admin users. sections of admin accessible limited users no longer accessible. if @ role resources role see section enabled and, when logged role see menu option, if pick access denied. 3 extensions know of far giving me trouble are

  1. commerce themes - guess registered customer
    • they add "manage guest reg" under "customers" menu
  2. adjustware - abandoned cart alerts
    • they add menu items under newsletter
  3. adjustware - review reminders
    • they add menu items under newsletter

i'm sure there other extensions similar problems, , it's due how implemented admin pages, haven't been able figure out yet. have fix?

update tried changing how router defined, didn't help.

was:

<admin>     <routers>         <guesttoreg>             <use>admin</use>             <args>                 <module>commercethemes_guesttoreg</module>                 <frontname>guesttoreg</frontname>             </args>         </guesttoreg>     </routers> </admin>

changed to:

<admin>     <routers>         <adminhtml>             <args>                 <modules>                     <guesttoreg after="mage_adminhtml">commercethemes_guesttoreg_adminhtml</guesttoreg>                 </modules>             </args>         </adminhtml>     </routers> </admin>

thanks ron v able find full answer enables menu permission.

given following adminhtml.xml file:

<config>     <acl>         <resources>             <admin>                 <children>                     <path_to>                         <children>                             <acl_resource>                                 <title>my acl resource</title>                             </acl_resource>                         </children>                     </path_to>                 </children>             </admin>         </resources>     </acl> </config>

you can extract resource path pass isallowed() determine if menu should shown user.

protected function _isallowed(){     return mage::getsingleton('admin/session')->isallowed('path_to/acl_resource'); }

Comments

Post a Comment

Popular posts from this blog

python - No exponential form of the z-axis in matplotlib-3D-plots -

-
Image
i have similar problem described in how prevent numbers being changed exponential form in python matplotlib figure : i don't want (in special case) weird scientific formatting of axis. problem different have problem @ z -axis. 2-d plots can use ax.get_yaxis().get_major_formatter().set_useoffset(false) . , there no function ax.get_zaxis() what use format z -axis same way? edit: example: from mpl_toolkits.mplot3d import axes3d import numpy np import sys import matplotlib import matplotlib.pyplot pyplot def func(xi, ti): res = 10e3 + np.cos(ti) * np.sin(xi) return res if __name__ == '__main__': timespacing = 20 timestart = 0 timeend = 1 time = np.linspace(timestart, timeend, timespacing) widthspacing = 50 widthstart = 0 widthend = 3 width = np.linspace(widthstart, widthend, widthspacing) reslist = [] matplotlib.rcparams['legend.fontsize'] = 10 fig = pyplot.figure() ax = fig.gca(projection = '3d...
Read more

php - Best Light server (Linux + Web server + Database) for Raspberry Pi -

-
i install web server database on raspberry pi (little computer). computer has 1gb ram. i want know best combination: linux distribution , web server , dbms run local server multiple users minimal latency, use php on server. , best settings performance , not have bugs (memory usage, disable plugin, disable service, etc)? i thought light debian , lighttpd server , sqlite database. solution? i think lighttpd + sqlite great choice. linux distro, debian @ centos or tiny core linux , although i'm not sure of compatibility pi. obviously, can't go wrong raspbian if want use in production , more stable performance, few more pi's , set them in cluster .
Read more

c# - "Newtonsoft.Json.JsonSerializationException unable to find constructor to use for types" error when deserializing class -

-
i developing app in xamarin android. have splash screen serialize class , pass mainactivity using intent . when try deserialize in mainactivity error message : "serializationexception unable find constructor use types" serialization : void loaddata() { currency currency = new currency(this); intent = new intent(this, typeof(mainactivity)); intent.putextra("currency", newtonsoft.json.jsonconvert.serializeobject(currency)); startactivity(intent); } deserialization : cur = newtonsoft.json.jsonconvert.deserializeobject<currency> (intent.getstringextra("currency")); // error here class constructor : public currency(context context) { thiscontext = context; } i began experiencing problem after added parameter context context constructor. has caused this? how can solve it? possible serialize/deserialize class has parameters? you need have empty constructor in currency class in order deserialize it. ...
Read more