moo.core.tests.test_security_model_acl.test_access_save_requires_grant

moo.core.tests.test_security_model_acl.test_access_save_requires_grant(t_init, t_wizard)

Access.save() previously had no permission check. A non-wizard with grant on their own object could obtain an Access row, reassign its object FK to a wizard-owned object, then call save() to inject an ACL entry without having grant on the target. Access.save() now calls can_caller(“grant”) against the entity the row belongs to.