https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=24466 Bug ID: 24466 Summary: AllowHoldsOnPatronsPossessions and the REST API Change sponsored?: --- Product: Koha Version: master Hardware: All OS: All Status: NEW Severity: normal Priority: P5 - low Component: Hold requests Assignee: koha-bugs@lists.koha-community.org Reporter: magnus@libriotech.no QA Contact: testopia@bugs.koha-community.org CC: gmcharlt@gmail.com A library in Sweden has reported the following problem: AllowHoldsOnPatronsPossessions = Do not allow. A patron borroes a book. A hold on the same book is then placed, for the same patron, through the REST API: curl --location --request POST 'https://{baseurl}/api/v1/holds/' \ --header 'Content-Type: text/plain' \ --header 'Authorization: Basic {base64-encoded user pwd}' \ --data-raw '{ "patron_id": {patronid}, "pickup_library_id": "{library}", "biblio_id": {biblioid} }' And voila, the patron has a hold on a record from which they already have an item on loan, contrary to the setting of the AllowHoldsOnPatronsPossessions syspref. (I have not tested this, but do trust that the report from the library is accurate.) -- You are receiving this mail because: You are the assignee for the bug. You are watching all bug changes.