[
https://issues.apache.org/jira/browse/OFBIZ-12489?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17480591#comment-17480591
]
Jacques Le Roux commented on OFBIZ-12489:
-----------------------------------------
+1 Michael, as you already said it, we already explained that to Pierre. I
trust he will get it this time. It might be seen as only a tiny part of the
work, but it's sometimes the harder. I guess Pierre knows that.
> Product Prices - VIEW permissions
> ---------------------------------
>
> Key: OFBIZ-12489
> URL: https://issues.apache.org/jira/browse/OFBIZ-12489
> Project: OFBiz
> Issue Type: Improvement
> Components: product/catalog
> Affects Versions: Upcoming Branch
> Reporter: Pierre Smits
> Assignee: Pierre Smits
> Priority: Major
> Labels: permissions, price, product, trust, usability, ux
> Fix For: Upcoming Branch
>
>
> Currently, a user with only 'VIEW' permissions, as demonstrated in trunk demo
> with userId = auditor, accessing the product prices screen, sees editable
> fields and/or triggers (to requests) reserved for users with 'CREATE' or
> 'UPDATE' permissions.
> See (test with):
> https://localhost:8443/catalog/control/EditProductPrices?productId=WG-9943
--
This message was sent by Atlassian Jira
(v8.20.1#820001)
