[OFBIZ-12893] Screen Security in Party should not show create trigger to user with only VIEW permission. - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Improvement
Status: Open
Priority: Major
Resolution: Unresolved
Affects Version/s: Upcoming Branch
Fix Version/s: None
Component/s: party
Labels:
None

Description

When accessing https://demo-trunk.ofbiz.apache.org/partymgr/control/FindSecurityGroup as a user with only VIEW permissions (e.g. userId = auditor) the action trigger to create something is shown.

This should not be visible to such a user as it leads to an undesired effect and diminished user experience.

Attachments

Activity

People

Assignee:: Unassigned

Reporter:: Pierre Smits

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Dates

Created:: 05/Feb/24 17:23

Updated:: 15/Apr/24 07:36