[rt-users] Prevent users from adding CC's and AdminCC's to tickets

Alex Peters alex at peters.net
Thu Feb 12 19:34:08 EST 2015


>From the v4.2.7 code, I'm interpreting these rules:

   1. Add/remove anyone if the user has the ModifyTicket right.
   2. Only add/remove self as AdminCc if the user has the WatchAsAdminCc
   right.
   3. Only add/remove self as Cc/Requestor if the user has the Watch right.

The logic is probably the same for all other recent versions of RT, but if
in doubt, take a look at the _HasModifyWatcherRight method in
lib/RT/Ticket.pm.

On 13 February 2015 at 04:26, Cena, Stephen (ext. 300) <SJC at qvii.com> wrote:

>  What permissions do I need to remove/enable to prevent users from
> modifying the CC/AdminCC lists (more specifically the AdminCC list). The
> audit trail of when people being added & removed is helpful, but I'd like
> to prevent it outright.
>
> Stephen J. Cena
> Supervisor/Systems Administrator - MIS/IT Dept
> Quality Vision International
> 850 Hudson Ave
> Rochester,NY 14620
> Phone: 585-544-0450 x300
> * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * *
> Please report email problems to: postmaster at qvii.com
>
> QVII MIS/IT Dept - We do what we must because we can.
> "Thank you for helping us help you help us all."
> * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * *
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.bestpractical.com/pipermail/rt-users/attachments/20150213/1e8bd7cc/attachment.html>


More information about the rt-users mailing list