Yes I have checked, everything is in proper place. But every user is still able to see all the tickets.
SF On Wednesday, May 10, 2017 at 9:48:14 AM UTC+2, RjOllos wrote: > > > > On Wed, May 10, 2017 at 12:34 AM toto200891 <[email protected] > <javascript:>> wrote: > >> Hi Ryan, >> >> With the above modifications, Now every user is able to view all tickets. >> It is revoking the actions of TICKET_VIEW_REPORTED permission >> >> Regards, >> >> SF >> > > Please make sure your permission policy is as below. Users with > TICKET_VIEW_REPORTED will only be able to see tickets for which they are > the reporter or owner. Please make sure that SupportDeskPolicy is the first > in the list of permission_policies. > > # -*- coding: utf-8 -*- > # > # Copyright (C) 2017 Edgewall Software > # All rights reserved. > # > # This software is licensed as described in the file COPYING, which > # you should have received as part of this distribution. The terms > # are also available at http://trac.edgewall.org/wiki/TracLicense. > # > # This software consists of voluntary contributions made by many > # individuals. For the exact contribution history, see the revision > # history and logs, available at http://trac.edgewall.org/log/. > > from trac.core import * > from trac.perm import IPermissionPolicy, IPermissionRequestor > from trac.resource import ResourceNotFound > from trac.ticket.model import Ticket > > > class SupportDeskPolicy(Component): > """Provides a permission for restricting ticket actions to the > ticket owner. > """ > > implements(IPermissionPolicy, IPermissionRequestor) > > # IPermissionRequestor methods > > def get_permission_actions(self): > return ['TICKET_VIEW_REPORTED'] > > # IPermissionPolicy methods > > def check_permission(self, action, username, resource, perm): > if action == 'TICKET_VIEW' and \ > 'TICKET_ADMIN' not in perm: > if 'TICKET_VIEW_REPORTED' in perm: > if resource is None or \ > resource.realm == 'ticket' and \ > resource.id is None: > return True > elif resource.realm == 'ticket' and \ > resource.id is not None: > try: > ticket = Ticket(self.env, resource.id) > except ResourceNotFound: > pass > else: > return username in (ticket['reporter'], > ticket['owner']) > > > [End of Message] > > > -- You received this message because you are subscribed to the Google Groups "Trac Users" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To post to this group, send email to [email protected]. Visit this group at https://groups.google.com/group/trac-users. For more options, visit https://groups.google.com/d/optout.
