Skip to content

VLT Actions (Footer, Site etc.) configureable from the LRF are not Workflow State Permission aware! #773

New issue
New issue
Open
Open
VLT Actions (Footer, Site etc.) configureable from the LRF are not Workflow State Permission aware!#773
@acsr

Description

@acsr
acsr
opened on Jan 20, 2026

Issue

Unlike the classic Plone Actions you can add an Action in the VLT sidebar and assign a link pointing to a page that is not publicly visible and its link shows up still when the page is rendered.

This results in a "You are not authorized this resource" page error.

Solution

Render the VLT action links permission aware based on the accessibility (YES!) of the target forn the currently logged in user.

Note (with some rant smell)

It is not understandable why you do not use the classic actions and like before in VLT 6.x and just provide an interface for it.

It is understandable that the current UI in Volto / VLT sidebar is not allowing the complexity of the classic approach. It would be a clever move to fix that to meet our excellent USP to respect workflows and permissions strictly and confident. Take the challenge ;-)

Metadata

Metadata

Assignees

No one assigned

    Labels

    No labels
    No labels

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions