Details
-
Bug
-
Resolution: Fixed
-
Medium
-
None
-
None
Description
Users that have restricted administrator permissions (ie, Studio customers) are able to see the screens to move and delete plans, but when they try to perform the action, they are prevented from doing so due to method level permission checks on PlanManager.
It appears to me that ACL_BUILD_ADMIN in applicationContextAcegiAuthorization should be granted to restricted administrators, not just normal administrators.