ofbiz-framework icon indicating copy to clipboard operation
ofbiz-framework copied to clipboard

Published 20 hours ago verified publisher icon apache

Improved: Routing - VIEW permissions (OFBIZ-12523)

Open PierreSmits opened this issue 3 years ago • 1 comments

Currently, a user with only 'VIEW' permissions, as demonstrated in trunk demo with userId = auditor, accessing the Routing screen, sees editable fields and/or triggers (to requests) reserved for users with 'CREATE' or 'UPDATE' permissions. To see/test: https://localhost:8443/accounting/control/EditAgreementRoles?agreementId=8000

modified: RoutingScreens.xml - restructured screen EditRouting to work with permissions RoutingTaskForms.xml - added grid AgreementRoles for users with VIEW permissions additional cleanup

PierreSmits avatar Jan 23 '22 08:01 PierreSmits

Kudos, SonarCloud Quality Gate passed!    Quality Gate passed

Bug A 0 Bugs
Vulnerability A 0 Vulnerabilities
Security Hotspot A 0 Security Hotspots
Code Smell A 0 Code Smells

No Coverage information No Coverage information
0.0% 0.0% Duplication

sonarqubecloud[bot] avatar Jan 23 '22 08:01 sonarqubecloud[bot]

Kudos, SonarCloud Quality Gate passed!    Quality Gate passed

Bug A 0 Bugs
Vulnerability A 0 Vulnerabilities
Security Hotspot A 0 Security Hotspots
Code Smell A 0 Code Smells

No Coverage information No Coverage information
0.0% 0.0% Duplication

sonarqubecloud[bot] avatar Dec 25 '22 10:12 sonarqubecloud[bot]