[Koha-bugs] [Bug 29509] GET /patrons* routes permissions excessive
bugzilla-daemon at bugs.koha-community.org
bugzilla-daemon at bugs.koha-community.org
Fri Mar 1 20:49:29 CET 2024
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=29509
Victor Grousset/tuxayo <victor at tuxayo.net> changed:
What |Removed |Added
----------------------------------------------------------------------------
Attachment #162579|0 |1
is obsolete| |
--- Comment #26 from Victor Grousset/tuxayo <victor at tuxayo.net> ---
Created attachment 162690
-->
https://bugs.koha-community.org/bugzilla3/attachment.cgi?id=162690&action=edit
Bug 29509: Update swagger specification and add permissions to users
This patch removes the 'edit_borrowers', 'manage_bookings',
'lable_creator', 'routing' and 'order_manage' permissions from the list
of options in the patrons list endpoint.
We then assign the new 'list_borrowers' permission to any users who have
those removed permissions
Test plan
1) Apply patch and run the database update
2) Users with any of the permissions listed above should now also have
the 'list_borrowers' permission too.
3) Check that patron searching continues to work from the various
locations in the UI for the above affected users
Signed-off-by: Victor Grousset/tuxayo <victor at tuxayo.net>
--
You are receiving this mail because:
You are watching all bug changes.
More information about the Koha-bugs
mailing list