Improved: VIEW permissions - BillingAccount roles (OFBIZ-12487) by PierreSmits · Pull Request #440 · apache/ofbiz-framework

PierreSmits · 2022-01-11T08:58:54Z

Currently, a user with only 'VIEW' permissions, as demonstrated in trunk demo with userId = auditor, accessing the billing account roles screen, sees editable fields and/or triggers (to requests) reserved for users with 'CREATE' or 'UPDATE' permissions.
See (test with): https://localhost:8443/accounting/control/EditBillingAccountRoles?billingAccountId=9010

Modified:
BillingAccountScreens.xml, re EditBillingAccountRoles:

added permission rules for CREATE/UPDATE
restructured section and widget/fail-widget elements, additional cleanup
BillingAccountForms.xml
added grid BillingAccountRoles (based on ListBillingAccountRoles)
additional cleanup/label harmonisation

Currently, a user with only 'VIEW' permissions, as demonstrated in trunk demo with userId = auditor, accessing the billing account roles screen, sees editable fields and/or triggers (to requests) reserved for users with 'CREATE' or 'UPDATE' permissions. See (test with): https://localhost:8443/accounting/control/EditBillingAccountRoles?billingAccountId=9010 Modified: BillingAccountScreens.xml, re EditBillingAccountRoles: - added permission rules for CREATE/UPDATE - restructured section and widget/fail-widget elements, additional cleanup BillingAccountForms.xml - added grid BillingAccountRoles (based on ListBillingAccountRoles) - additional cleanup/label harmonisation