ofbiz-framework icon indicating copy to clipboard operation
ofbiz-framework copied to clipboard

Published 20 hours ago verified publisher icon apache

Improved: Party Rates - VIEW permissions (OFBIZ-12529)

Open PierreSmits opened this issue 3 years ago • 3 comments

Currently, a user with only 'VIEW' permissions, as demonstrated in trunk demo with userId = auditor, accessing the Party Rates screen, sees editable fields and/or triggers (to requests) reserved for users with 'CREATE' or 'UPDATE' permissions. To see:/test: for DemoEmployee (rates in demo data): https://localhost:8443/partymgr/control/EditPartyRates?partyId=DemoEmployee for DemoEmployee2 (after merge of PR74 in plugins): https://localhost:8443/partymgr/control/EditPartyRates?partyId=DemoEmployee2

Modified:

  • PartyScreens.xml - restructured screen EditPartyRates to work with permissions
  • PartyForms.xml - added grid PartyRates for users with VIEW permissions additional cleanup

PierreSmits avatar Jan 24 '22 10:01 PierreSmits

Kudos, SonarCloud Quality Gate passed!    Quality Gate passed

Bug A 0 Bugs
Vulnerability A 0 Vulnerabilities
Security Hotspot A 0 Security Hotspots
Code Smell A 0 Code Smells

No Coverage information No Coverage information
0.0% 0.0% Duplication

sonarqubecloud[bot] avatar Jan 24 '22 10:01 sonarqubecloud[bot]

I think the removal of the blank lines between the elements makes the files less readable and maintanable. It would also be better to split between functional changes and code cleanup, would make it possible to only take the functional change and leave the (maybe unwanted) "cleanups".

mbrohl avatar Jan 25 '22 10:01 mbrohl

Thanks you for your opinion.

It would also be better to split between functional changes and code cleanup, would make it possible to only take the functional change and leave the (maybe unwanted) "cleanups". If you feel that strongly about it, go write a proposal and send that to the dev mailing list and start a discussion there.

PierreSmits avatar Jan 25 '22 12:01 PierreSmits