[OFBIZ-12415] User with only 'VIEW' permissions and invoice items - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Improvement
Status: Closed
Priority: Major
Resolution: Implemented
Affects Version/s: Trunk
Fix Version/s: None
Component/s: accounting
Labels:

Description

Currently, a user with only 'VIEW' permissions, as demonstrated in trunk demo with userId = auditor, accessing the items screen on an invoice sees fields editable and triggers to requests reserved for users with 'CREATE' or 'UPDATE' permissions.

See https://demo-trunk.ofbiz.apache.org/accounting/control/listInvoiceItems?invoiceId=demo10001

Attachments

Issue Links

links to

GitHub Pull Request #361

Activity

People

Assignee:: Pierre Smits

Reporter:: Pierre Smits

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Dates

Created:: 28/Nov/21 07:16

Updated:: 11/Jan/22 09:37

Resolved:: 28/Nov/21 11:31