diff options
| author | Frederic Guillot <fred@kanboard.net> | 2017-01-26 22:26:07 -0500 |
|---|---|---|
| committer | Frederic Guillot <fred@kanboard.net> | 2017-01-26 22:26:07 -0500 |
| commit | 83ad4e4448008590aaec968bee9fd395cc5dc4af (patch) | |
| tree | 85c7186dea8356aab86060965387276e5aed53f5 | |
| parent | a371d53e635f1c0aa6097045ac5b59e78962f760 (diff) | |
Set API methods getColumns and getColumn accessible to project viewers
| -rw-r--r-- | ChangeLog | 1 | ||||
| -rw-r--r-- | app/ServiceProvider/AuthenticationProvider.php | 3 |
2 files changed, 3 insertions, 1 deletions
@@ -7,6 +7,7 @@ New features: Improvements: +* Set API methods "getColumns" and "getColumn" accessible to project viewers * Simplify date and time configuration to avoid potential validation issues Regressions: diff --git a/app/ServiceProvider/AuthenticationProvider.php b/app/ServiceProvider/AuthenticationProvider.php index d953705d..3c04ff61 100644 --- a/app/ServiceProvider/AuthenticationProvider.php +++ b/app/ServiceProvider/AuthenticationProvider.php @@ -198,7 +198,8 @@ class AuthenticationProvider implements ServiceProviderInterface $acl->add('ActionProcedure', array('removeAction', 'getActions', 'createAction'), Role::PROJECT_MANAGER); $acl->add('CategoryProcedure', '*', Role::PROJECT_MANAGER); - $acl->add('ColumnProcedure', '*', Role::PROJECT_MANAGER); + $acl->add('ColumnProcedure', array('updateColumn', 'addColumn', 'removeColumn', 'changeColumnPosition'), Role::PROJECT_MANAGER); + $acl->add('ColumnProcedure', array('getColumns', 'getColumn'), Role::PROJECT_VIEWER); $acl->add('CommentProcedure', array('removeComment', 'createComment', 'updateComment'), Role::PROJECT_MEMBER); $acl->add('ProjectPermissionProcedure', '*', Role::PROJECT_MANAGER); $acl->add('ProjectProcedure', array('updateProject', 'removeProject', 'enableProject', 'disableProject', 'enableProjectPublicAccess', 'disableProjectPublicAccess'), Role::PROJECT_MANAGER); |