This commit is contained in:
@@ -389,11 +389,9 @@ Sidetrack, case 3888 customer feature control in global settings required for cu
|
||||
see case, add to global object at server and also must return login availability and code that too now so it all works
|
||||
also customer centric notifications and features need to be filtered through this security at the server now too
|
||||
|
||||
STATE: Login returns proper rights for customer type user, now need to update initialize.js to properly present whatever is available
|
||||
meaning the big csr,wo lists but also notifications (none=don't show), notifications in form filter out list of available and User settings filter out or in
|
||||
NOTE: is possible user could have no rights to anything at all due to combination of filters and stuff
|
||||
so need to handle that scenario and test for it and maybe clearly display that they have no rights so it's not confusing when it comes up blank
|
||||
(maybe a norights home page??)
|
||||
TODO: customer access features need to be filtered OUT at the server if they don't have access
|
||||
in case they attempt to circumvent UI somehow
|
||||
Easiest thing is when code those forms also enable at the back end more security checks
|
||||
|
||||
|
||||
|
||||
|
||||
Reference in New Issue
Block a user