Bug? about roles
Page: 1
Recent posts in this topic
Pro
There are by default 'admin' and 'project manager' as system roles with preset permissions - happen to meet one case that one colleague who has been defined as 'project manager' (system role) accidentally can access and create ticket/upload files in a project that she is not a member of, but that only lasts for half a day till she can't see the project anymore, during such period, she was never added or removed from such project...is there any "back door" of the system for this scenario? have you ever experienced this kind of problem?
Staff
Ilija Studen
on Aug 5. 2008. 6:41 am
This is by design. Project managers can access and do whatever they want in ALL projects. It does not matter if they are added to that project or not.
To reduce clatter on Dashboard, Assignments and other "overview" pages that show data from multiple projects, activeCollab show only data from projects user is actually involved with, even though she might have project management or administration permissions. This is how system works and that is desired behavior.
If she wants to see all projects, even the ones that she is not member of, she'll need to click on Projects icon in the toolbar. That section lists all projects.
To reduce clatter on Dashboard, Assignments and other "overview" pages that show data from multiple projects, activeCollab show only data from projects user is actually involved with, even though she might have project management or administration permissions. This is how system works and that is desired behavior.
If she wants to see all projects, even the ones that she is not member of, she'll need to click on Projects icon in the toolbar. That section lists all projects.
activeCollab team member | LinkedIn
Pro
so how to define a system role with custom permissions that only be able to access projects she/he is a member of? by disable project_management permission?
feel that it is more secure that any system role with preset permissions should be limited per project basis but not per system basis.
feel that it is more secure that any system role with preset permissions should be limited per project basis but not per system basis.
Staff
Ilija Studen
on Aug 5. 2008. 6:59 am
Yes, you should set project_management and admin_access to No and user will be able to access and see and access ONLY project he or she is directly involved with.
Sure. activeCollab supports both setups where everyone can do everything as well as setups where you pretty much control everything. More on roles and what each permissions means and does can be found in Roles and Permissions support article.
Li Hui:feel that it is more secure that any system role with preset permissions should be limited per project basis but not per system basis.
Sure. activeCollab supports both setups where everyone can do everything as well as setups where you pretty much control everything. More on roles and what each permissions means and does can be found in Roles and Permissions support article.
activeCollab team member | LinkedIn
