-
Notifications
You must be signed in to change notification settings - Fork 4.2k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Site Title: Avoid 403 errors for users with low permissions #45093
Conversation
Open in CodeSandbox Web Editor | VS Code | VS Code Insiders |
Size Change: +619 B (0%) Total Size: 1.28 MB
ℹ️ View Unchanged
|
Can anyone confirm if the newly enabled e2e test is passing locally for them? |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Thanks George! The test is passing locally for me..
I'm wondering if it has something to do with the changes when the actual title is fetched and the nodes. Have you tried something like waiting for the node with the site title inside and then check the prop?
And a small nit: in the new test the variable name shouldn't be editableSiteTitleSelector
.
I adjusted the e2e tests a bit. Let's see if this works. The CI test logs also show 400 requests; maybe the failure is related to user swapping. |
I think we also have a different cause of flakiness for the site title tests. So I'm going to revert the e2e tests state and only merge the 403 error bug fix. |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
It'd be good to find the root issue for the failing test, but we can land the changes for now. Thanks!
What?
Fixes #33003.
PR fixes
403
errors generated by the Site Title block for non-admin users.Why?
The editor should check permission before making requests when data isn't available for everyone.
How?
I've updated the selector logic to conditionally use (and fetch) data from the settings endpoint or from the read-only index based on user permissions.
Testing Instructions
Admin users
The Site Title block should work as before.
Non-admin users (e.g. Editor or Author role).
E2E Tests