https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=18787
--- Comment #10 from David Cook <[email protected]> --- Thinking about where we'd need to update... I think ultimately a user's permissions get returned by "getuserflags" in C4/Auth.pm. The flags are used in "get_authz_from_flags" in Koha/Auth/Permissions.pm to the "CAN_user_$module_$subperm" mappings, and "haspermission" in C4/Auth.pm checks $flagsrequired (e.g. { self_check => 'self_checkin_module' } ) against $flags from "getuserflags". -- I actually have a user audit tool in my local Koha that shows you a table/matrix of your users and their permissions, and that also uses C4::Auth::getuserflags() to get a user's permissions, so that would dovetail well too... -- In theory, adding a simple role-based permission model might actually not be too hard on the backend... Looking at ./members/member-flags.pl it seems that the permissions shown are derived more directly from the DB, so that's good. That said, I think we'd want a way to show patrons their "effective permissions" too. In the end, I think the UI/UX is probably going to be the hardest part of this change actually. -- You are receiving this mail because: You are the assignee for the bug. You are watching all bug changes. _______________________________________________ Koha-bugs mailing list [email protected] https://lists.koha-community.org/cgi-bin/mailman/listinfo/koha-bugs website : http://www.koha-community.org/ git : http://git.koha-community.org/ bugs : http://bugs.koha-community.org/
