retrieving patron by barcode does not show permission denied events
Bug #1916963 reported by
Jason Etheridge
This bug affects 1 person
| Affects | Status | Importance | Assigned to | Milestone | |
|---|---|---|---|---|---|
| Evergreen |
Confirmed
|
Medium
|
Unassigned | ||
Bug Description
Using concerto if you, for example, login with with sl1jpayton at an SL1 workstation, go to Circulation -> Check Out and enter 99999376669 (a BR4 patron), the internal get_barcodes call returns an uncaught permission denied error for the VIEW_USER permission. A partially rendered and broken patron display then renders.
| Changed in evergreen: | |
| status: | New → Confirmed |
| importance: | Undecided → Medium |
| tags: | added: patron permissions |
Revision history for this message
| Lindsay Stratton (lstratton) wrote | #1 |
To post a comment you must log in.
Testing in a Sequoia test server, version 3.8, the "permission denied: VIEW_USER" dialog displays as expected.
On clicking cancel, the screen displays an empty patron record form: tabs (disabled), barcode field (disabled), check out grid, etc.
On clicking OK/Continue with same login credentials - the Permission Override Login Succeeded toast displays, and dialog reappears.
On clicking OK/Continue with login credentials for account with permissions - the the Permission Override Login Succeeded toast displays, but the patron record is not retrieved.
Once VIEW_USER is added, subsequent required permissions / permission denied dialogs for retrieving a patron record display and exhibit the same behaviors.