https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=35693 --- Comment #5 from David Cook <dcook@prosentient.com.au> --- (In reply to Mathieu Saby from comment #4)
Hi For information, you can have a look at the FOLIO permission system https://docs.folio.org/docs/platform-essentials/permissions/
This doesn't really look too different from Koha, in my opinion. I quite like AWS's IAM policies which essentially boils down to "subject", "verb", "object", and "condition". X subject can perform Y action on Z object when C condition is met. Each service/module has a list of actions, and these actions are where you get a lot of the granularity. But as Christopher was saying... if you're able to define the "object" or the "condition", you can make it so that X subject can only Y update an existing Z news item. -- Koha permissions typically are only checked at page load time, although I think there are a couple that are checked at action time. -- You are receiving this mail because: You are the assignee for the bug. You are watching all bug changes.