Forum

Permission settings for Profile only

Posted in CategoryGeneral
  • Paulus Yeung    ( User ) 1 month ago
    I created a new Role called Supervisor. I want Supervisors can read and edit its own Profile. I don't want Supervisors to Read Users.

    If I unchecked Read Auth Users and checked Read Auth Profile, I got 403 error.

    If I checked Read Auth Users and checked Read Auth Profile, the 403 is gone, I can edit Profile. But now I can see other Users which I don't want.

    The question is, how can I setup a Role which can Read/Edit Profile belongs to itself without Create/Read/Update/Delete Users permissions?
  • Denis Duliçi    ( Admin ) 1 month ago
    Hello,

    You should give Read/Update > Auth Profile permission only.

    Regards
  • Paulus Yeung    ( User ) 1 month ago
    If I use Update Auth Profile only, that gives me no Profile item inside the dropdown menu, meaning no way to see/ edit Profile.
  • Denis Duliçi    ( Admin ) 1 month ago
    Here it has been fixed: https://github.com/akaunting/akaunting/pull/1494

    Thanks for the feedback.
  • Iui Uiu    ( User ) 1 month ago
    When is the 2.0.16 coming out to avail of this fix.

Please login or register to leave a response.