Uploaded image for project: 'XNAT'
  1. XNAT
  2. XNAT-4403

Add permissions/role for accessing/setting preference values

    Details

    • Type: Bug
    • Status: Open
    • Priority: Blocker
    • Resolution: Unresolved
    • Affects Version/s: None
    • Fix Version/s: 1.8
    • Labels:
      None
    • Sprint:
      1.7 Release Sprint
    • Rank:
      0|0hzz4o:pd8i
    • Sprint:
      1.7 Release Sprint

      Description

      Right now all preferences can be read by anyone and set by administrators. Certain preferences, e.g. email configuration which can include open SMTP relays and username and password, should have a setting to restrict read access.

        Issue Links

          Activity

          Hide
          jrherrick@wustl.edu Rick Herrick added a comment -

          Make the same change to the investigators REST API calls so that random people can't just edit or delete investigators.

          Show
          jrherrick@wustl.edu Rick Herrick added a comment - Make the same change to the investigators REST API calls so that random people can't just edit or delete investigators.

            People

            • Assignee:
              jrherrick@wustl.edu Rick Herrick
              Reporter:
              jrherrick@wustl.edu Rick Herrick
            • Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

              Dates

              • Created:
                Updated:

                Agile