From 0382cb4c19b69d5683596b4b763a2bae9238c7e6 Mon Sep 17 00:00:00 2001
From: Sebastian Helzle <sebastian@helzle.it>
Date: Tue, 13 Aug 2024 14:26:14 +0200
Subject: [PATCH] BUGFIX: Correctly define manage assets privilege
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

The previously defined privilege on the controller had no effect as the controller
didn’t have any relevant actions to modify assets.

Therefore the privilege was adjusted to target the mutationresolver which contains
all methods to modify assets.
---
 Configuration/Policy.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/Configuration/Policy.yaml b/Configuration/Policy.yaml
index 278f2c68b..545548972 100644
--- a/Configuration/Policy.yaml
+++ b/Configuration/Policy.yaml
@@ -1,7 +1,7 @@
 privilegeTargets:
   'Neos\Flow\Security\Authorization\Privilege\Method\MethodPrivilege':
     'Flowpack.Media.Ui:ManageAssets':
-      matcher: 'method(public Flowpack\Media\Ui\Controller\MediaController->(.*)Action())'
+      matcher: 'method(Flowpack\Media\Ui\GraphQL\Resolver\Type\MutationResolver->.*())'
     'Flowpack.Media.Ui:Queries':
       matcher: 'method(public Flowpack\Media\Ui\GraphQL\Resolver\(.*)Resolver->.*()) || method(t3n\GraphQL\Controller\GraphQLController->queryAction())'