Load the first catalog current user can create assets in on asset cre…

…ate page Previously if current user can't create assets on the default catalog(either $DefaultCatalog or the first catalog they can see), they would get the "Permission Denied" error directly and couldn't pick catalogs at all. This commit tries a bit harder to find a catalog current user can create assets in, before returning the "Permission Denied" error.
bestpractical · Mar 12, 2024 · bdbdf0c · bdbdf0c
1 parent cf34cad
commit bdbdf0c
Showing 1 changed file with 13 additions and 0 deletions.
diff --git a/share/html/Asset/Create.html b/share/html/Asset/Create.html
@@ -110,6 +110,19 @@
 my $asset   = RT::Asset->new( $session{CurrentUser} );
 my $catalog = LoadDefaultCatalog( $Catalog || '' );
 
+if ( !$Catalog && ( !$catalog->id || !$catalog->CurrentUserHasRight('CreateAsset') ) ) {
+    my $cache_key = SetObjectSessionCache(
+        ObjectType       => 'Catalog',
+        CheckRight       => 'CreateAsset',
+        CacheNeedsUpdate => RT::Catalog->CacheNeedsUpdate,
+        ShowAll          => 0,
+    );
+
+    if ( $session{$cache_key}{objects}[0] ) {
+        $catalog->Load( $session{$cache_key}{objects}[0]->{Id} );
+    }
+}
+
 Abort(loc("Unable to find catalog '[_1]'", $Catalog))
     unless $catalog->id;