[Discuss] Handle rights and roles for CdmPreferences
Currently every user can change CdmPreferences.
Do we need a new role "CdmPreferenceAdmin" or should the right be included in Role_Project_Manager?
How, to implement this in the services and in TaxEditor.
Updated by Andreas Müller about 1 year ago
- Tags set to security, preferences
- Due date deleted (
- Status changed from New to Resolved
- Assignee changed from Katja Luther to Andreas Müller
- Target version changed from Unassigned CDM tickets to Release 5.28
CDM Preferences are currently only available via the Admin menu which, I think, is only available for admin and Role_Project_Manager.
In #8602#note-5 it has also more or less been decided that DB preferences should be available via Role_Project_Manager. I think this makes sense and if nobody contradicts I take this as the decision. It was already documented as such add CdmAuthorisationAndAccessControl in context of #8602.
So I think the discussion part of this ticket is done. I open a new ticket for the remaining task to secure the PreferenceService methods accordingly: #9829