Vulnerability in EPiServer.Forms
I am trying to show the EPiServer right click menu for all users. However setting the page.ContextMenu.IsMenuEnabled to true does not seem to be enough. Is there a way to accomplish this? I don´t want all users to have access to edit mode, just the context menu, could this be done? Any suggestions?
Just setting IsMenuEnabled to true is not enough. There are more access checks done so the right options are created depending on the current user accessrights.
I guess you could do your own contextmenu control and replace the default one on your page templates.
If you don't have reflector I recommend you download it so you can check out how the contextmenu works.
Thanks for the reply!
The issue I was having was actually caused by adding custom items to the menu without the proper access rights.
Using EPiServer.Security.AccessLevel.NoAccess when adding the items solved the problem for me.