fixes #14337: remove security gap in approval workflow (#14338)

* 🎉 Init * 🐛 Fix variable responsible for creator * 🐛 Fix variable responsible for creator --------- Co-authored-by: at91mm <mariusz.gorski@ing.com>
2025-12-26 15:10:05 +00:00 · 2023-12-12 11:27:05 +01:00 · 2023-12-12 11:27:05 +01:00 · b3ac8de405
commit b3ac8de405
parent 20bc238413
1 changed files with 6 additions and 2 deletions
--- a/openmetadata-ui/src/main/resources/ui/src/components/Task/TaskTab/TaskTab.component.tsx
+++ b/openmetadata-ui/src/main/resources/ui/src/components/Task/TaskTab/TaskTab.component.tsx
@ -258,7 +258,10 @@ export const TaskTab = ({
   * @returns True if has access otherwise false
   */
  const hasEditAccess =
-    isAdminUser || isAssignee || isOwner || Boolean(isPartOfAssigneeTeam);
+    isAdminUser ||
+    isAssignee ||
+    isOwner ||
+    (Boolean(isPartOfAssigneeTeam) && !isCreator);

  const onSave = (message: string) => {
    postFeed(message, taskThread?.id ?? '').catch(() => {
@ -302,7 +305,8 @@ export const TaskTab = ({
  };

  const approvalWorkflowActions = useMemo(() => {
-    const hasApprovalAccess = isAssignee || Boolean(isPartOfAssigneeTeam);
+    const hasApprovalAccess =
+      isAssignee || (Boolean(isPartOfAssigneeTeam) && !isCreator);

    return (
      <Space