Project:
| View Revisions: Issue #54972 | [ All Revisions ] [ Back to Issue ] | ||
| Summary | 0054972: A record in a non editable tab can be deleted by a role if it includes an editable field | ||
| Revision | 2024-04-08 12:24 by AugustoMauch | ||
| Steps To Reproduce | In any Openbravo environment (only backoffice needed) Go to Role window and set the User window as editable (Editable = 'Y' in Window access tab) to the current logged in role and the "User - User" tab as non editable (Editable = 'N' in Tab Access subtab) Log out and log in Go to User window, check that a record cannot be created. Check as well that existing records cannot be removed, and that none of the fields are editable. Go back to Role window and add "Username - User - User" field as editable (Editable = 'Y' in Field access subtab) Log out and log in Open again the User window and notice that the New Record button is enabled (this is OK as only the username field can be edited), but the Delete current record button is enabled as well, and it should not be |
||
| Revision | 2024-04-08 12:17 by AugustoMauch | ||
| Steps To Reproduce | In https://livebuilds.openbravo.com/context/retail_modules_pgsql_pi [^] Go to Role window and set the Bill Of Materials window as editable (Editable = 'Y' in Window access tab) to the current logged in role and the I/O Product tab as non editable (Editable = 'N' in Tab Access subtab) Log out and log in Go to Bill Of Materials window, create a record Add a product in the Production Plan tab and a positive quantity Launch the Create/Process button once Try to remove a record from the I/O Products tab and check the Delete button is disabled Go back to Role window and add Movement quantity field as editable (Editable = 'Y' in Field access subtab) Log out and log in Return to Bill Of Materials window and check you can only edit the Movement quantity field of the I/O Products tab Select a record with negative movement quantity and delete it You are able to do it and you shouldn't |
||
| Revision | 2024-04-08 12:17 by AugustoMauch | ||
| Steps To Reproduce | In https://livebuilds.openbravo.com/context/retail_modules_pgsql_pi [^] Go to Role window and set the Bill Of Materials window as editable (Editable = 'Y' in Window access tab) to the current logged in role (as long as it is Manual, if not, switch to a manual role) and the I/O Product tab as non editable (Editable = 'N' in Tab Access subtab) Log out and log in Go to Bill Of Materials window, create a record Add a product in the Production Plan tab and a positive quantity Launch the Create/Process button once Try to remove a record from the I/O Products tab and check the Delete button is disabled Go back to Role window and add Movement quantity field as editable (Editable = 'Y' in Field access subtab) Log out and log in Return to Bill Of Materials window and check you can only edit the Movement quantity field of the I/O Products tab Select a record with negative movement quantity and delete it You are able to do it and you shouldn't |
||
| Revision | 2024-03-15 14:39 by AugustoMauch | ||
| Steps To Reproduce | In https://livebuilds.openbravo.com/context/retail_modules_pgsql_pi [^] Go to Role window and set the Bill Of Materials window as editable (Editable = 'Y' in Window access tab) to the current logged in role and the I/O Product tab as non editable (Editable = 'N' in Tab Access subtab) Log out and log in Go to Bill Of Materials window, create a record Add a product in the Production Plan tab and a positive quantity Launch the Create/Process button once Try to remove a record from the I/O Products tab and check the Delete button is disabled Go back to Role window and add Movement quantity field as editable (Editable = 'Y' in Field access subtab) Log out and log in Return to Bill Of Materials window and check you can only edit the Movement quantity field of the I/O Products tab Select a record with negative movement quantity and delete it You are able to do it and you shouldn't |
||
| Copyright © 2000 - 2009 MantisBT Group |
 |