summaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authorFrederic Guillot <fred@kanboard.net>2017-01-26 22:26:07 -0500
committerFrederic Guillot <fred@kanboard.net>2017-01-26 22:26:07 -0500
commit83ad4e4448008590aaec968bee9fd395cc5dc4af (patch)
tree85c7186dea8356aab86060965387276e5aed53f5
parenta371d53e635f1c0aa6097045ac5b59e78962f760 (diff)
Set API methods getColumns and getColumn accessible to project viewers
-rw-r--r--ChangeLog1
-rw-r--r--app/ServiceProvider/AuthenticationProvider.php3
2 files changed, 3 insertions, 1 deletions
diff --git a/ChangeLog b/ChangeLog
index c6599864..a51a245d 100644
--- a/ChangeLog
+++ b/ChangeLog
@@ -7,6 +7,7 @@ New features:
Improvements:
+* Set API methods "getColumns" and "getColumn" accessible to project viewers
* Simplify date and time configuration to avoid potential validation issues
Regressions:
diff --git a/app/ServiceProvider/AuthenticationProvider.php b/app/ServiceProvider/AuthenticationProvider.php
index d953705d..3c04ff61 100644
--- a/app/ServiceProvider/AuthenticationProvider.php
+++ b/app/ServiceProvider/AuthenticationProvider.php
@@ -198,7 +198,8 @@ class AuthenticationProvider implements ServiceProviderInterface
$acl->add('ActionProcedure', array('removeAction', 'getActions', 'createAction'), Role::PROJECT_MANAGER);
$acl->add('CategoryProcedure', '*', Role::PROJECT_MANAGER);
- $acl->add('ColumnProcedure', '*', Role::PROJECT_MANAGER);
+ $acl->add('ColumnProcedure', array('updateColumn', 'addColumn', 'removeColumn', 'changeColumnPosition'), Role::PROJECT_MANAGER);
+ $acl->add('ColumnProcedure', array('getColumns', 'getColumn'), Role::PROJECT_VIEWER);
$acl->add('CommentProcedure', array('removeComment', 'createComment', 'updateComment'), Role::PROJECT_MEMBER);
$acl->add('ProjectPermissionProcedure', '*', Role::PROJECT_MANAGER);
$acl->add('ProjectProcedure', array('updateProject', 'removeProject', 'enableProject', 'disableProject', 'enableProjectPublicAccess', 'disableProjectPublicAccess'), Role::PROJECT_MANAGER);