CiviCRM Community Forums (archive)

*

News:

Have a question about CiviCRM?
Get it answered quickly at the new
CiviCRM Stack Exchange Q+A site
This forum was archived on 25 November 2017. Learn more.
How to get involved.
What to do if you think you've found a bug.



  • CiviCRM Community Forums (archive) »
  • Old sections (read-only, deprecated) »
  • Support »
  • Using CiviCRM »
  • Using Core CiviCRM Functions (Moderator: Yashodha Chaku) »
  • granting ACL "view" op for "all groups" also allows "edit" op
Pages: [1]

Author Topic: granting ACL "view" op for "all groups" also allows "edit" op  (Read 890 times)

TwoMice

  • I post frequently
  • ***
  • Posts: 214
  • Karma: 16
    • Emphanos
  • CiviCRM version: Always current stable version
  • CMS version: Drupal 7
granting ACL "view" op for "all groups" also allows "edit" op
November 02, 2010, 12:42:32 pm
Seems like granting the "view" operation will also give the user access to edit the contacts, not just view.  But this seems to be only when granting for "All Groups" rather than for a specific group.

I'm doing this now on the 3.2 demo sandbox at http://drupal.demo.civicrm.org/.  Some relevant details:
* The user (set up for me by dgg - thanks!) has only "access CiviCRM" permission
* User is in group "view only", and "view only" group has been added to "view only" ACL role
* if "view only" ACL role is added to an ACL with following settings, user can edit all contacts:
   * operation: View,
   * type of data: Group
   * which data: All Groups
* if you change those settings so that type_of_data="Newsletter Subscribers", user can only view, not edit, those contacts

BTW, use case at the moment is to create a user or set of users that can view all contacts and edit none.  Maybe there's a better way to do that?

Thanks,
TM
Please consider contributing to help improve CiviCRM with the Make it Happen! initiative.

JoeMurray

  • Administrator
  • Ask me questions
  • *****
  • Posts: 578
  • Karma: 24
    • JMA Consulting
  • CiviCRM version: 4.4 and 4.5 (as of Nov 2014)
  • CMS version: Drupal, WordPress, Joomla
  • MySQL version: MySQL 5.5, 5.6, MariaDB 10.0 (as of Nov 2014)
Re: granting ACL "view" op for "all groups" also allows "edit" op
November 09, 2010, 10:38:37 am
I haven't tested this myself, but it seems like you should log an issue in JIRA for it.
Co-author of Using CiviCRM https://www.packtpub.com/using-civicrm/book

TwoMice

  • I post frequently
  • ***
  • Posts: 214
  • Karma: 16
    • Emphanos
  • CiviCRM version: Always current stable version
  • CMS version: Drupal 7
Re: granting ACL "view" op for "all groups" also allows "edit" op
November 09, 2010, 02:25:58 pm
Patch posted here:
http://issues.civicrm.org/jira/browse/CRM-7061
Please consider contributing to help improve CiviCRM with the Make it Happen! initiative.
Pages: [1]
  • CiviCRM Community Forums (archive) »
  • Old sections (read-only, deprecated) »
  • Support »
  • Using CiviCRM »
  • Using Core CiviCRM Functions (Moderator: Yashodha Chaku) »
  • granting ACL "view" op for "all groups" also allows "edit" op

This forum was archived on 2017-11-26.