[
https://issues.apache.org/jira/browse/OFBIZ-9763?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Suraj Khurana reopened OFBIZ-9763:
----------------------------------
Re-opening the ticket as these services can be used with the anonymous user so permission service must not be used in entity definition.
> Create separate Permission Services for CRUD services of ShoppingList and ShoppingListItem
> ------------------------------------------------------------------------------------------
>
> Key: OFBIZ-9763
> URL:
https://issues.apache.org/jira/browse/OFBIZ-9763> Project: OFBiz
> Issue Type: Improvement
> Components: ecommerce, party
> Affects Versions: Trunk, Release Branch 16.11
> Reporter: Chinmay Patidar
> Assignee: Arun Patidar
> Fix For: Upcoming Release
>
> Attachments: OFBIZ-9763.patch, OFBIZ-9763.patch
>
>
> In CRUD services for ShoppingList and ShoppingListItem entities, the security related checks are present inline in the services. This implementation violates the best practice of keeping security implementation different from the business logic.
> We need to implement security services for such operations and to call them as a permission-service from the CRUD operation services definition
--
This message was sent by Atlassian JIRA
(v6.4.14#64029)