[
https://issues.apache.org/jira/browse/OFBIZ-12419?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17450995#comment-17450995
]
Pierre Smits edited comment on OFBIZ-12419 at 11/30/21, 9:59 AM:
-----------------------------------------------------------------
Bonjour Jacques,
Thanks for the feedback.
Yes, I did.
If you do a search/find across the data sets, you'll find that
userLogin="auditor" is not associated with SecurityGroup="AUDITOR", but with
SecurityGroup="VIEWADMIN" through UserLoginSecurityGroup. We fixed that view
permission issue under OFBIZ-12421 with merging the commit(s) via[ PR
369|[https://github.com/apache/ofbiz-framework/pull/369].]
As for this "ACCTG_PREF_UPDATE" permission: this permission is intended for
users with permissions to update the PartyAcctgPreference record(s). This
permission is not intended for users with only VIEW permissions. For those
users we have ACCTG_PREF_VIEW.
As I explained in the first comment (see above), the setAcctgCompany service is
not for creating/updating records in PartyAcctgPreference, but for
creating/updating a record in UserPreference (we could debate about the name of
the service, but that is another issue).
was (Author: pfm.smits):
Bonjour Jacques,
Thanks for the feedback.
Yes, I did.
If you do a search/find across the data sets, you'll find that
userLogin="auditor" is not associated with SecurityGroup="AUDITOR", but with
SecurityGroup="VIEWADMIN" through UserLoginSecurityGroup. We fixed that view
permission issue under OFBIZ-12421 with merging the commit(s) via[ PR
369|[https://github.com/apache/ofbiz-framework/pull/369].]
As for this "ACCTG_PREF_UPDATE" permission: this permission is intended for
users with permissions to update the PartyAcctgPreference record(s). This
permission is not intended for users with only VIEW permissions. For those
users we have ACCTG_PREF_VIEW.
As I explained in the first comment (see above), the setAcctgCompany service is
not for creating records in PartyAcctgPreference, but for setting a record in
UserPreference (we could debate about the name of the service, but that is
another issue).
> VIEW permissions - error when accessing PartyAccountsSummary
> ------------------------------------------------------------
>
> Key: OFBIZ-12419
> URL: https://issues.apache.org/jira/browse/OFBIZ-12419
> Project: OFBiz
> Issue Type: Bug
> Components: accounting
> Affects Versions: Trunk
> Reporter: Pierre Smits
> Assignee: Pierre Smits
> Priority: Major
> Labels: gl-account, permissions, usability
>
> When a user with VIEW permissions (e.g. auditor) access the
> PartyAccountSummary via following uri, an error is shown.
> [https://demo-trunk.ofbiz.apache.org/accounting/control/PartyAccountsSummary]
> {code:java}
> The Following Errors Occurred:
> You haven't the permission for the service setAcctgCompany, reason : Access
> refused {code}
>
>
--
This message was sent by Atlassian Jira
(v8.20.1#820001)
