Fix checking permissions in api3 profile get #16848

colemanw · 2020-03-19T12:34:33Z

Overview

Fixes an apparent bug in api3 code where a boolean value needs to be inverted.

This is confusing so I'm gonna break it down here as much for myself as anyone reading this:

civicrm_api3_profile_get takes a param called check_permissions.
If true, permissions will be checked.
CRM_Core_BAO_UFGroup::getFields takes a param called $skipPermission.
If true, permissions will not be checked.
The expression being passed into $skipPermission was empty($params['check_permissions']) ? FALSE : TRUE.
That's a confusing way of saying a = a; the value stays the same.
The problem is that the two functions expect their respective permission params to have opposite meanings, so in passing this param through from one function to the other, it needs to be inverted.

Whew! Brain hurts.

The boolean being passed to the $skipPermission param was reversed.

civibot · 2020-03-19T12:34:36Z

(Standard links)

If this is your first pull-request for CiviCRM, please browse CONTRIBUTING.md for information about the development and testing processes.
If you are reviewing this pull-request, you may wish to consult the test sites and the Review Standards (long template, short template).

colemanw · 2020-03-19T14:41:39Z

@eileenmcnaughton I came across this randomly while fixing up bool expressions. Haven't tried running it and I doubt there's any test coverage.

retest this please

eileenmcnaughton · 2020-03-19T20:37:01Z

I agree!

Fix checking permissions in api3 profile get

c40f0e5

The boolean being passed to the $skipPermission param was reversed.

civibot bot added the master label Mar 19, 2020

eileenmcnaughton merged commit fd04bde into civicrm:master Mar 19, 2020

eileenmcnaughton deleted the profilePerms branch March 19, 2020 20:37