[Koha-bugs] [Bug 29509] GET /patrons* routes permissions excessive
bugzilla-daemon at bugs.koha-community.org
bugzilla-daemon at bugs.koha-community.org
Thu Jan 11 16:29:45 CET 2024
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=29509
--- Comment #10 from Martin Renvoize <martin.renvoize at ptfs-europe.com> ---
Can we be even clearer here somehow?
i.e. should it be 'list_`something`_borrowers' (and whilst we're here can we
swap out 'borrowers' for 'users' as it affect both borrowers and staff 'users'.
The reason I add the 'something' in the middle is that I want it made clear
this permission only allows the end api consumer to see the users they should
be able to see (i.e. limited by library or library group depending on settings,
vs the 'view_borrower_infos_from_any_library' option that expands that list
significantly.. in theory at least)
--
You are receiving this mail because:
You are watching all bug changes.
More information about the Koha-bugs
mailing list