[5.2] Fix Permissions for Manually Running Scheduled Tasks

[ditsuke]

Pull Request for Issue #36677.

Summary of Changes

• Explicitly disables the "run task" button on insufficient authorization.
• Adds tooltip to give context on disabling the button.
• Change default permission level for running tasks/grant access to creator.
• Prevent manual runs from being publicly accessible regardless of permission levels. Ref: #36453#issuecomment-1001793962 / @PhilETaylor

Testing Instructions

• Create a new task with an administrator (not superuser) account.
• Still as administrator, try to run it from the Scheduled tasks manager.
• Try to run other tasks created by the super user.
• Login as super user.
• Check that you can run all tasks.
• Thrash some task.
• Check the trashed tasks.

Actual result BEFORE applying this Pull Request

As administrator (not superuser), there is no indication that the user is not authorized to run the task. The button is usable.
In all cases there is an error message.
Only a super user can run tasks.

Expected result AFTER applying this Pull Request

As administrator (not superuser):

• The button is enabled for tasks created by yourself and you can run these tasks.
• The button is disabled for tasks which were created by the super user (.e.g those from a new installation). Reason for being disabled is available through a tooltip on hover.

As super user buttons of all tasks are enabled, and you can run these tasks.

When a task is trashed, the button is disabled, and a tool tip shows the reason.

Documentation Changes Required

N/A

[brianteeman]

How can it make sense for a user to be able to create a new task and setup lazy loading etc but not be able to run the task directly

[ditsuke]

How can it make sense for a user to be able to create a new task and setup lazy loading etc but not be able to run the task directly

Definitely, now that I think of it the creator should be able to run them manually as a default. I'll work on enabling that behavior before opening this PR.

[brianteeman]

Possibly need a new permission for that "Edit own"

[ditsuke]

@brianteeman what do you think about this check?

[HLeithner]

This pull request has automatically rebased to 4.2-dev.

[HLeithner]

This pull request has been automatically rebased to 4.3-dev.

[HLeithner]

This pull request has been automatically rebased to 4.4-dev.

[HLeithner]

This pull request has been automatically rebased to 5.2-dev.

[richard67]

I was able to resolve the merge conflicts, which were mainly caused by PRs #40216 and #42746 .

It needs to be tested if this PR here and #42746 still work.

[richard67]

I have tested this item ✅ successfully on eb813f6

---

_{This comment was created with the J!Tracker Application at issues.joomla.org/tracker/joomla-cms/36719.}

[dautrich]

I have tested this item 🔴 unsuccessfully on eb813f6

---

_{This comment was created with the J!Tracker Application at issues.joomla.org/tracker/joomla-cms/36719.}

[dautrich]

I've tested on J5.2.3 with a user belonging to user group "Administrator".

• Without the patch applied, I was able to click on an existing task, but the task showed an error.
• With the patch applied, the task execution button of the existing task were "greyed" out and showed a tooltip "Not authorized".
  
• But with the patch applied, I was able to create additional tasks and run them:
  

[richard67]

@dautrich Of course you shall be able to run your own tasks as user in the administrator group. And as administrator you shall also be able to create tasks. But the ones created by the super user are disabled. To me it seems it is workings as intended.

[richard67]

P.S. Without the PR, one error is that you can not run tasks which you have created when you are an administrator. This is also fixed by this PR, that’s why you can create tasks and run them as administrator.

[dautrich]

Then the testing instructions seem to be misleading. It says: "Create a new task with an admin (not superuser) account." And that's what I did.

[richard67]

Hmm I see the testing instructions are not precise.

[richard67]

@dautrich I've updated the testing instructions. Thanks for the hint.

[richard67]

P.S. I've updated again testing instructions and added a test for trashed tasks.

[exlemor]

I have tested this item ✅ successfully on eb813f6

I have tested this successfully.

(thanks for the updated testing instructions Richard!)

( Cool PR btw, thanks to all that made it possible ).

---

_{This comment was created with the J!Tracker Application at issues.joomla.org/tracker/joomla-cms/36719.}

[dautrich]

I have tested this item ✅ successfully on eb813f6

---

_{This comment was created with the J!Tracker Application at issues.joomla.org/tracker/joomla-cms/36719.}

[richard67]

RTC

---

_{This comment was created with the J!Tracker Application at issues.joomla.org/tracker/joomla-cms/36719.}

[richard67]

Thanks for testing.

[Hackwar]

Thank you!