-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On 12.01.2013 11:03, Frank Murphy wrote: > Sumary: > How can I ensure that authenticated users, > can modify tickets, enter comments, view close etc.. > But not restore description.
(snip) > If I change the description, email, reporter, > and replace with "example.com" > > How can I prevent an authenticated user, > from just deleting the "exmple.com" diff, > and restoring original personal data to description. > > At the moment Authenticated users have: > TICKET_VIEW, TICKET_CREATE, TICKET_MODIFY. plus other report views. In your setup authenticated users can't touch ticket descriptions. TICKET_EDIT_DESCRIPTION or TICKET_ADMIN would be required. So you should already be fine. > While admins, have (inherited) > TRAC_ADMIN, WIKI_CREATE, TICKET_EDIT_DESCRIPTION, As you already hinted, just TRAC_ADMIN is enough. Its all here even in each Trac environment's wiki (see TracGuide > Permissions), or the authoritative version at trac.edgewall.org [1]. Steffen Hoffmann [1] http://trac.edgewall.org/wiki/TracPermissions -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iEYEARECAAYFAlDxYgMACgkQ31DJeiZFuHdb8ACguSucJ7a2ornZWSXhaYmA1Jy+ 1vIAn2u2oUlPuHikZetdx5T1qTL9yO56 =Wu1K -----END PGP SIGNATURE----- -- You received this message because you are subscribed to the Google Groups "Trac Users" group. To post to this group, send email to [email protected]. To unsubscribe from this group, send email to [email protected]. For more options, visit this group at http://groups.google.com/group/trac-users?hl=en.
