[Koha-bugs] [Bug 1643] New: moredetail.pl allows item deletion with no warning and irrespective of independentbranches

Thu Dec 6 10:59:25 CET 2007

http://bugs.koha.org/cgi-bin/bugzilla/show_bug.cgi?id=1643

           Summary: moredetail.pl allows item deletion with no warning and
                    irrespective of independentbranches
           Product: Koha
           Version: HEAD
          Platform: Macintosh
        OS/Version: All
            Status: NEW
          Severity: normal
          Priority: P3
         Component: Catalogue
        AssignedTo: paul.poulain at free.fr
        ReportedBy: rch at liblime.com
         QAContact: koha-bugs at nongnu.org

This is a template issue and a permissions issue.

I think there should not be a 'delete' option here.  You can delete from 
the additem page. (in fact, we already have link to edit items; the 'Modify'
link suggests that you'll be modifying _that_ item, not just taken to edit
items page;  I suggest removing both mod and delete links, and just using
the 'edit items' link at top of page.

As for independent branches, delete needs a script level check -- one should 
not be able to craft a url that deletes items at other locations  (i.e., after
the template issue is fixed, this is still a problem).

------- You are receiving this mail because: -------
You are the QA contact for the bug, or are watching the QA contact.