Set an image for Centric CRM 4.1 (Stable and Released)

Sign In or Register

Centric CRM 4.1 (Stable and Released)

Core Team
PUBLIC PROFILE

Assignment

Priority: Scheduled
Assigned To: Kailash Bhoopalam
Estimated Resolution Date:
6/14/2007, 12:00 AM

Ticket # 150

This ticket is open
Severity: Normal
Category: Usability
Entered by: Michael Harvey 6/11/2007, 12:36 PM
Last modified: Olga Kaptyug 6/14/2007, 8:27 AM

Description

Unintended Permissions/Access Behavior in Document Store.

This occured in DHV CRM, running version 4.2 Beta.

There is a hopefully unintended consequence of the way the Document Store permission structure works in Centric CRM. I was granting access to the Marketing Materials document store in DHV. I had all privileges to modify that particular store granted to me via either a role or a departmental membership. When I explicitly added myself as a named user, however, I lost my privileges to modify the team since, as an individual, I now have only Guest access.

Surely, the behavior we want is for the highest level permission that a user has (whether granted to them individually, as a role, or as a department) to prevail?

Solution

A solution hasn't been entered

File Attachments

There are no file attachments

Ticket Activity

Date Event
Michael Harvey 6/11/2007, 12:36 PM [ Ticket Opened ]
Michael Harvey 6/11/2007, 12:36 PM [ Ticket is unassigned ]
Michael Harvey 6/11/2007, 12:36 PM [ Priority set to Scheduled ]
Michael Harvey 6/11/2007, 12:36 PM [ Severity set to Normal ]
Matt Rajkowski 6/12/2007, 9:42 PM Additionally, the following has been reported:

I created a test document store to illustrate:

1. Created a Document Store from scratch, called 'TEST'
2. Added a user to the document store called 'JohnDoe'
3. Give 'JohnDoe' contributor level 3 access
4. Change every permission in the permissions tab to contributor leve 3.

JohnDoe can not do the following:
1. Can not delete files from the document store. (although he can delete folders from document store)
2. Can not view the permissions tab.(does not show up on screen)
3. Can not view accounts tab (receive an error when clicking accounts tab)

The error we keep seeing is the following:

The system administrator has been notified.
You do not have the permissions to perform this action.
Matt Rajkowski 6/13/2007, 8:44 AM The following branch can be used to fix this issue:
https://svn.centricsuite.com/webapp/branches/f-20070613-413-issues
Kailash Bhoopalam 6/13/2007, 10:29 AM [ Assigned to Holub, Andrei ]
Andrei Holub 6/14/2007, 2:45 AM [ Reassigned from Holub, Andrei to Kaptyug, Olga ]
Olga Kaptyug 6/14/2007, 8:27 AM [ Reassigned from Kaptyug, Olga to Bhoopalam, Kailash ]
Olga Kaptyug 6/14/2007, 8:27 AM This situation was a result of bad named permissions in first and third case.
The second is more complete. Please see document_store_center.jsp, line 82. Now only manager can see the 'Permissions' tab.
Do we need to add new permission 'View document store permissions'?
Distribution List
Michael H., Tom D., Matt R.