The ApiCheckCanExecute hook should pass an authority object instead of/in addition to a User object.
Fix extensions implementing the hook (codesearch).
Description
Description
| Status | Subtype | Assigned | Task | ||
|---|---|---|---|---|---|
| Open | None | T218674 User::getRights() applies session rights restrictions to non-session users | |||
| Open | None | T180888 All permission checks should be able to return a custom error message | |||
| Open | None | T231930 Introduce Authority objects to represent the user performing a given action | |||
| Open | None | T275508 Convert ApiCheckCanExecute hook to Authority |