Author Topic: Permissions within CiviCase - on a per-casetype basis (Read 504 times)

nickholden · September 19, 2013, 06:19:18 am

We'd like to be able to restrict access (certainly create / edit / delete access, view access is less of an issue) to teams of staff who deal with particular case types. Currently it seems that CiviCRM ACLs apply only to contact, events, profiles and custom data, and therefore cannot be defined to apply to CiviCase data, never mind specific case types.

Has anyone got a handle on what would be involved in applying the ACL concept to CiviCase, particularly in a way that would enable us to allocate staff into a group with permision to work on cases of a specific case type (analagous to the way the 'group of contacts' ACL can be used to give only certain users the ability to edit contacts in a specific group)?

Thanks in advance.

Nick

Donald Lobo · September 19, 2013, 07:18:05 am

If i were doing it, i would approach it as follows (for minimal work):

a. Check the code and figure out where you need to add access control. Typically in most civi code this is in 1-5 places (i.e. not all over the place)

b. Invoke the existing hook so an external module can send in the ACL query clause (Civi has an acl hook for this that u can most likely reuse)

c. Implement a module with the hook

If i had to guess, this is a 10-20 hour project?

lobo

CiviCRM Community Forums (archive)

News:

Author Topic: Permissions within CiviCase - on a per-casetype basis (Read 504 times)

nickholden

Permissions within CiviCase - on a per-casetype basis

Donald Lobo

Re: Permissions within CiviCase - on a per-casetype basis