[Koha-bugs] [Bug 28882] Incorrect permissions check client-side
bugzilla-daemon at bugs.koha-community.org
bugzilla-daemon at bugs.koha-community.org
Fri Sep 10 08:22:42 CEST 2021
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=28882
--- Comment #13 from Marcel de Rooy <m.de.rooy at rijksmuseum.nl> ---
(In reply to Katrin Fischer from comment #12)
Thx for your feedback.
> I don't think shutting out non-superlibrarians from the admin tools/system
> preferences is a feasible solution. That forces you to give out
> superlibrarian permissions to more people instead of making it a protected
> circle. We just added granular permissions for administration areas - that
> would make them practically useless.
It might be helpful if we could distinguish between viewing sysprefs and
changing them.
And along those lines, a small set of sysprefs could somehow be set apart for
changes only by superlibrarian. Perhaps even configurable by sysadmin.
The gap in the changing permissions form is that we allow a staff user to set
and clear permissions that he does not have himself. Which is a bit awkward,
especially for Admininstration. I think that we should give that a bit more
thought.
> Maybe the ProtectSuperLib should not be a pref in the first place?
Currently, a lot of devs need a preference to come in since we are too afraid
to change 'current behavior'.
This pref could be marked as privileged. See before.
I will open a few reports for these things.
--
You are receiving this mail because:
You are watching all bug changes.
More information about the Koha-bugs
mailing list