Vulnerability in EPiServer.Forms
I have the following problem: After reentering an existing composer page, the access to one of the functions has been reset, and the edit link is not displayed anymore. When clicking at the grey area at the top of the function, I get the following message: "You are not allowed to edit this content function". The access and rules in composer admin is correctly set.
The workaround seems to be to set the access to the function each time I edit it. Otherwise the access is reset after editing the function and I get the above message the next time I try to edit it. This is a bit cumbersome. Is there a solution to this problem?
Best regards, Knut-Olav Traa
Just a FYI post. And maybe not relevant at all to your specific issue (but relevant to the heading)
I have noticed that in Google Chrome and IE8 the composer functionality appears to work fine, but when you drop a function to a content area, you either get a crash message, or you get the "not allowed to" message.
I had this problem with my Composer too, when trying to drag my own function into a content area. It turned out that I had implement my code in the OnInit event instead of OnLoad. I changed it to OnLoad and it work like a charm.
Hope this could help you.