0008080: wrong permission test when moving or copy an issue

ID	Project	Category	View Status	Date Submitted	Last Update
0008080	mantisbt	bugtracker	public	2007-06-19 11:51	2007-06-19 11:51

Reporter	brazo	Assigned To
Priority	normal	Severity	minor	Reproducibility	always
Status	new	Resolution	open

Summary	0008080: wrong permission test when moving or copy an issue
Description	in page 'bug_action_group.php' when copy an issue from a project to another, mantis check for the configuration in the source (current) project. case 'COPY': .. if (access_has_project_level(config_get('report_bug_threshold'), $f_project_id)) should be if (access_has_project_level(config_get('report_bug_threshold', null, auth_get_current_user_id(), $f_project_id), $f_project_id )) in fact, config_get() with default parameters get the configuration for the current project.
Steps To Reproduce	remove report permission on a project named 'destination' and give the same permission on a project named 'source'. copy an issue from 'source' to 'destination'. no error occurs. copy an issue from 'destination' to 'source' a permission denied error occurs
Additional Information	the same check should be implementd for 'move' operation where no permission check is performed
Tags	No tags attached.