Something seems a little bit funny about this, but I haven't looked in to any details. The main thing is that if we remove the COMMON_ADMIN permission from FULLADMIN, why not remove the COMMON_* permissions from the FLEXADMIN user?
Also, where/what is the bug reported by Ignatius Reilly?
-David
[hidden email] wrote:
> Author: sichen
> Date: Thu Jun 7 09:31:42 2007
> New Revision: 545234
>
> URL:
http://svn.apache.org/viewvc?view=rev&rev=545234> Log:
> Remove a couple of SecurityGroupPermission references which don't correspond to any SecurityPermission. I fixed this with a bug Pointed out by Ignatius Reilly
>
> Modified:
> ofbiz/trunk/framework/common/data/CommonSecurityData.xml
>
> Modified: ofbiz/trunk/framework/common/data/CommonSecurityData.xml
> URL:
http://svn.apache.org/viewvc/ofbiz/trunk/framework/common/data/CommonSecurityData.xml?view=diff&rev=545234&r1=545233&r2=545234> ==============================================================================
> --- ofbiz/trunk/framework/common/data/CommonSecurityData.xml (original)
> +++ ofbiz/trunk/framework/common/data/CommonSecurityData.xml Thu Jun 7 09:31:42 2007
> @@ -25,12 +25,10 @@
> <SecurityPermission description="Update operations in the Common Component." permissionId="COMMON_UPDATE"/>
> <SecurityPermission description="Delete operations in the Common Component." permissionId="COMMON_DELETE"/>
>
> - <SecurityGroupPermission groupId="FULLADMIN" permissionId="COMMON_ADMIN"/>
> <SecurityGroupPermission groupId="FLEXADMIN" permissionId="COMMON_CREATE"/>
> <SecurityGroupPermission groupId="FLEXADMIN" permissionId="COMMON_DELETE"/>
> <SecurityGroupPermission groupId="FLEXADMIN" permissionId="COMMON_UPDATE"/>
> <SecurityGroupPermission groupId="FLEXADMIN" permissionId="COMMON_VIEW"/>
>
> <SecurityGroupPermission groupId="VIEWADMIN" permissionId="COMMON_VIEW"/>
> - <SecurityGroupPermission groupId="BIZADMIN" permissionId="COMMON_ADMIN"/>
> </entity-engine-xml>
>
>
Locked
