Decorators and non-admin users #2730
Closed
Comments
dennisoelkers
added a commit
that referenced
this issue
Aug 24, 2016
This change does the following when a user lacks the
'decorators:edit:${streamId}' permission:
* disables items in action menu, when user lacks
* disables controls to create decorator
* disables ability to reorder decorators by drag & drop
Fixes #2730.
dennisoelkers
added a commit
that referenced
this issue
Aug 25, 2016
This change does the following when a user lacks the
'decorators:edit:${streamId}' permission:
* disables items in action menu, when user lacks
* disables controls to create decorator
* disables ability to reorder decorators by drag & drop
Fixes #2730.
edmundoa
added a commit
that referenced
this issue
Aug 25, 2016
) * Disable editing controls for decorator if user lacks permissions. This change does the following when a user lacks the 'decorators:edit:${streamId}' permission: * disables items in action menu, when user lacks * disables controls to create decorator * disables ability to reorder decorators by drag & drop Fixes #2730. * Fixing method order, correcting stream prop type. * Fixing wiring of callback.
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
We need to check the user permissions when displaying the decorators controls in the UI.
Expected Behavior
Non-admin users can only see controls in the UI to apply, edit, or delete decorators when they have the right permissions for it.
Current Behavior
Controls to apply, edit, and delete decorators are visible for all users. This is only a display problem, as the backend actions check the user permissions before making any changes in the system.
Possible Solution
Check user permissions in the frontend, to only display the controls for the actions a user can perform.
Steps to Reproduce (for bugs)
Your Environment
The text was updated successfully, but these errors were encountered: