[rt-users] More About Permissions

Jerrad Pierce jpierce at cambridgeenergyalliance.org
Tue Dec 8 17:29:24 EST 2009 

> It seems like the only way I can enable those permissions is to enable
> global rights for AdminUsers and ShowConfigTab.  I don’t really want all
> these users to be able to modify users and I don’t want them to see the
> config tab.  What I am I missing for enabling these permissions, or is there
> another way to get what I want, maybe create a local version of the
> /ticket/display.html page that removes that restriction?

You could do that, or modify the people box to display the information
in question directly.

Custom fields seem like a poor fit, given the existing abilities in
this area, and the likelihood of information falling out of sync.

My solution has been to give the privileged users this right, and
apply the patch below, which restricts more egregious user twiddling
(password, privileged and creation) to the super user, but you could
switch that to a custom access right.

--- share/html/Admin/Users/Modify.html 2009-10-23 11:32:21.000000000 -0400
+++ local/html/Admin/Users/Modify.html  2009-11-29 20:42:29.000000000 -0500
@@ -105,6 +105,7 @@
 </table>
 </&>
 <br />
+% if( $session{'CurrentUser'}->HasRight( Object=> $RT::System, Right
=> 'SuperUser') ){
 <&| /Widgets/TitleBox, title => loc('Access control') &>
 <input type="hidden" class="hidden" name="SetEnabled" value="1" />
 <input type="checkbox" class="checkbox" name="Enabled" value="1"
<%$EnabledChecked%> />
@@ -134,6 +135,7 @@
 </table>
 % }
 </&>
+% }
 % $m->callback( %ARGS, CallbackName => 'LeftColumnBottom', UserObj =>
$UserObj );
 </td>

@@ -198,7 +200,7 @@
 <input name="MobilePhone" value="<%$UserObj->MobilePhone||''%>"
size="13" /><br />
 </td></tr>
 <tr><td align="right">
-<&|/l&>Pager</&>:
+<&|/l&>Fax</&>:
 </td><td>
 <input name="PagerPhone" value="<%$UserObj->PagerPhone||''%>"
size="13" /><br />
 </td>
@@ -255,6 +257,8 @@

 my ($val, $msg);

+delete(@ARGS{qw/Priveleged Disabled Pass1 Pass2/}) unless(
$session{'CurrentUser'}->HasRight( Object=> $RT::System, Right =>
'SuperUser') );
+
 if ($Create) {
     $current_tab = 'Admin/Users/Modify.html?Create=1';
     $title = loc("Create a new user");



-- 
Cambridge Energy Alliance: Save money. Save the planet.

More information about the rt-users mailing list