Uploaded image for project: 'COmanage'
  1. COmanage
  2. CO-1869

"View" action buttons rendered on CoPerson and OrgId canvases when they should not be (or views are inaccessible that should be)

    XMLWordPrintable

Details

    Description

      Rendering of "View" action buttons for fields on the CoPerson and OrgId canvas is based on the "view" permission for the current view itself; this may be incorrect and results in a "Permission Denied" message when the user attempts to view the underlying field when no access to view it actually exists. This should be corrected so that these buttons are hidden when a user has no access to view the underlying field.

      If the underlying field should be visible, then we need to review the access calculation on the underlying object.

      Attachments

        Issue Links

          is related to

          Bug - A problem which impairs or prevents the functions of the product. CO-110 MVPA view issues

          • Major - Major loss of function.
          • Open

          Bug - A problem which impairs or prevents the functions of the product. CO-1856 Canvas displays View button for identifiers when it should not for non-admins

          • Major - Major loss of function.
          • Resolved

          Activity

            People

              arlen.johnson@at.internet2.edu Arlen Johnson (google.com)
              arlen.johnson@at.internet2.edu Arlen Johnson (google.com)
              Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: