[Koha-bugs] [Bug 29509] GET /patrons* routes permissions excessive
bugzilla-daemon at bugs.koha-community.org
bugzilla-daemon at bugs.koha-community.org
Tue Jan 23 11:10:45 CET 2024
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=29509
Martin Renvoize <martin.renvoize at ptfs-europe.com> changed:
What |Removed |Added
----------------------------------------------------------------------------
Attachment #161270|0 |1
is obsolete| |
--- Comment #18 from Martin Renvoize <martin.renvoize at ptfs-europe.com> ---
Created attachment 161271
-->
https://bugs.koha-community.org/bugzilla3/attachment.cgi?id=161271&action=edit
Bug 29509: Update swagger specification and add permissions to users
This patch removes the 'edit_borrowers', 'manage_bookings',
'lable_creator', 'routing' and 'order_manage' permissions from the list
of options in the patrons list endpoint.
We then assign the new 'list_borrowers' permission to any users who have
those removed permissions
Test plan
1) Apply patch and run the database update
2) Users with any of the permissions listed above should now also have
the 'list_borrowers' permission too.
3) Check that patron searching continues to work from the various
locations in the UI for the above affected users
--
You are receiving this mail because:
You are watching all bug changes.
More information about the Koha-bugs
mailing list