[Koha-bugs] [Bug 30230] Search for patrons in checkout should not require edit_borrowers permission
bugzilla-daemon at bugs.koha-community.org
bugzilla-daemon at bugs.koha-community.org
Fri Dec 1 21:02:57 CET 2023
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=30230
Andrew Fuerste-Henry <andrewfh at dubcolib.org> changed:
What |Removed |Added
----------------------------------------------------------------------------
Status|Needs Signoff |Failed QA
--- Comment #28 from Andrew Fuerste-Henry <andrewfh at dubcolib.org> ---
With this new patch, I did the following:
- create a user with catalogue, circulate_remaining_permissions, and
list_borrowers permissions
- log into the staff client as that user
- in the Checkout field of mainpage.pl, search for "a" (with superlibrarian
permissions, this returns all patrons with "a" in their name")
- Koha takes you to the search results page, but shows no results and gives
message "Something went wrong when loading this table. 403: Forbidden"
- go back to the homepage and enter "Henry" in the Checkout box (in the
default sandbox data this name finds only one patron and should take you
straight to them)
- Koha again takes you to the search results page and gives a 403 error
--
You are receiving this mail because:
You are watching all bug changes.
More information about the Koha-bugs
mailing list