Changes between Version 6 and Version 7 of ComponentPermissionsPlugin


Ignore:
Timestamp:
Mar 28, 2013, 3:00:27 AM (3 years ago)
Author:
mitar
Comment:

--

Legend:

Unmodified
Added
Removed
Modified
  • ComponentPermissionsPlugin

    v6 v7  
    44== Description ==
    55
    6 This plugin provides permissions based on ticket components. For example, having a component `foobar` it will provide permission `COMPONENT_FOOBAR_VIEW`. If configured field is checked than this permission is required to access the ticket with this component.
     6This plugin provides permissions based on ticket components. For example, having a component `foobar` it will provide permission `COMPONENT_FOOBAR_VIEW` which is then required to access the ticket with this component.
    77
    88After installation you have to configure which field it checks to enable component permission checking:
     
    1111#!ini
    1212[component-permissions]
    13 ticket_field_name = privacy
    1413allow_reporter = false
    1514allow_owner = false
     
    1817}}}
    1918
    20 For example, this can be such custom ticket field:
     19You should also add the component somewhere near the beginning of the `permission_policies` list:
     20
     21{{{
     22#!ini
     23permission_policies = ComponentPermissionsPolicy, DefaultPermissionPolicy, LegacyAttachmentPolicy
     24}}}
     25
     26Additionally, you can require component permission only when a configured ticket field is checked. For example, this can be such custom ticket field:
    2127
    2228{{{
     
    2834}}}
    2935
    30 You should also add the component somewhere near the beginning of the `permission_policies` list:
     36And you configure this plugin to use it:
    3137
    3238{{{
    3339#!ini
    34 permission_policies = ComponentPermissionsPolicy, DefaultPermissionPolicy, LegacyAttachmentPolicy
     40[component-permissions]
     41ticket_field_name = privacy
    3542}}}
     43
     44This will require component permission only when ticket is marked as privacy sensitive.
     45
     46If you want only some components to have limited access, simply assign other components' permissions to the anonymous user.
    3647
    3748There is also a special permission `COMPONENT_VIEW` which gives the user (or group) permission to see any ticket otherwise limited by component permissions.