https://www.redmine.org/https://www.redmine.org/favicon.ico?16793021292012-09-20T08:17:16ZRedmineRedmine - Defect #11887: Issue permission doesn't apply to Administratorshttps://www.redmine.org/issues/11887?journal_id=410572012-09-20T08:17:16ZChris Riether
<ul></ul><p>Is there any restriction (exept the workflow order) working for admins?<br />Seems not to me.</p>
<p>Have experienced the same. Argued to myself that if I would like to change the data, i could do it in the DB. So it wouldn't change a thing, if restrictions would work. It would only slow down my attempt. Admins are evil^^ You have to trust them.</p>
<p>Required data could be erased afterwards. So it doesn't matter, too.</p>
<p>But for the good feeling restrictions should be enabled.</p>
<p><strong>Vote for it: +1</strong></p>
<p>Best regards, Chris</p>
<p>PS.: thinking about it admins shouldn't be in worker roles.. like in the Linux-world adviced</p> Redmine - Defect #11887: Issue permission doesn't apply to Administratorshttps://www.redmine.org/issues/11887?journal_id=410762012-09-20T16:43:29ZJean-Philippe Langjp_lang@yahoo.fr
<ul></ul><blockquote>
<p>But after I attached a role to my administrator user to that project, it continues to ignore that "required" field permission.</p>
</blockquote>
<p>Currently, admin users inherits workflow/fields permissions for all roles. So if the field is not required for at least one role, it's not required for admins. But if you set the field required for all roles, then it will be required for admin users too.</p> Redmine - Defect #11887: Issue permission doesn't apply to Administratorshttps://www.redmine.org/issues/11887?journal_id=421382012-10-18T16:10:24ZFlorent Fievez
<ul></ul><p>I think this should be an option in the application settings ...</p> Redmine - Defect #11887: Issue permission doesn't apply to Administratorshttps://www.redmine.org/issues/11887?journal_id=427332012-11-09T10:29:20ZDaniel Felix
<ul></ul><p>Well i think, the whole admin-permission system should be more "flexible" more settings to set admin permissions to each role. and remove those admin checkbox. This way, we could define some "mini-admins" which could define custom fields, but can't change systemconfigurations and so on.</p> Redmine - Defect #11887: Issue permission doesn't apply to Administratorshttps://www.redmine.org/issues/11887?journal_id=514092013-08-27T07:51:40ZAndreas Hestermeyer
<ul></ul><p>+1</p> Redmine - Defect #11887: Issue permission doesn't apply to Administratorshttps://www.redmine.org/issues/11887?journal_id=515182013-09-02T10:00:01Zmilena jael silva morales
<ul></ul><p>I have this problem too. I'm testing the new Issue permission and changing field permissions doesn't affect any ussers</p> Redmine - Defect #11887: Issue permission doesn't apply to Administratorshttps://www.redmine.org/issues/11887?journal_id=518822013-09-18T15:53:59ZPerico Os Palotes
<ul><li><strong>File</strong> <a href="/attachments/10484">01.png</a> <a class="icon-only icon-download" title="Download" href="/attachments/download/10484/01.png">01.png</a> added</li></ul><p>I would like to seed some light on this, based on my own experience, using Redmine 2.3.0.</p>
<p>You can test:</p>
<p>1. Login as "admin" account<br />2. Create a new project, let's call it "project1" accepting all default values<br />3. Create a new tracker, let's name it "new_tracker":<br />-Mark the checkbox "Copy workflow from" and select "Bug" in the dropdown <br />-Mark the checkbox "project_1" <br />-Click on "Create" leaving the other options untouched.<br />4. Go to Administration / Workflow<br />5. Select "Manager" in the role dropdown and "new_tracker" in the tracker dropdown and click Edit<br />6. Click on "Field permissions" tab<br />7. Select "Required" in the "Description" standard field (X coordinate) and for "In progress" status (see attachment) and click "Save" <br />8. Repeat steps 5-7 to all roles<br />9. Create a new user, let's call it "user1", and make it admin.<br />10. Go to Administration / Projects and click on "project1" <br />11. Click on "Members" tab and select at the same time "user1" and "Manager" role, and then click "Add" <br />11. Login as "user1", if possible in another browser, keeping "admin" session open<br />12. Create a new issue, selecting "new_tracker" in the Tracker drop down, fill just the subject and click on "Create" <br />13. Click on "update" and then change the status to "In progress"</p>
<p>If you followed all the steps below, the "Description" field will be updated and be mandatory, so you will not be able to click on the "Submit" button with the field empty.</p>
<p>The rule is: the field ("Description" in our example) and the status ("In progress" in our example) should be "Required" or "Read-only" to ALL the roles in order to be applied to "admin" users.<br />If just one role does not have this field - status combination to "Required" or "Read-only", no restriction will be applied to admin users for this field - status combination.</p>
<p>I hope that this help to understand a little bit the logic of field permissions regarding admin users.</p> Redmine - Defect #11887: Issue permission doesn't apply to Administratorshttps://www.redmine.org/issues/11887?journal_id=535032013-12-01T04:08:28ZToshi MARUYAMA
<ul><li><strong>Related to</strong> <i><a class="issue tracker-1 status-8 priority-5 priority-high2" href="/issues/15327">Defect #15327</a>: move issue(s) disappeared / not functional</i> added</li></ul> Redmine - Defect #11887: Issue permission doesn't apply to Administratorshttps://www.redmine.org/issues/11887?journal_id=637112015-05-13T20:39:29ZFrederico Camara
<ul></ul><p>Trere is a strange behaviour in the app/models/issue.rb model.</p>
<p>A tracker (issue type) has to have a required custom field in ALL ROLES the user is using on a project, for the field to be actually required.</p>
<p>This way I can't have roles that give just specific permissions.</p>
<p>I think that from the roles the user have on a project, only the roles that can change a tracker (issue) to a certain state should be checked. Roles that have no meaningful workflow could not be determinant to if a field becomes readonly or required.</p>
<p>Unfortunately a recent change in 2.6.5 interferes with my patch. Anyway, here's the patch against redmine 2.6.3, maybe it can be adapted:</p>
<pre>
533c533,534
< workflow_permissions = WorkflowPermission.where(:tracker_id => tracker_id, :old_status_id => status_id, :role_id => roles.map(&:id))
---
> vroles = WorkflowTransition.where(:tracker_id => tracker_id, :new_status_id => status_id, :role_id => roles.map(&:id)).pluck(:role_id) & roles.map(&:id)
> workflow_permissions = WorkflowPermission.where(:tracker_id => tracker_id, :old_status_id => status_id, :role_id => vroles)
541c542
< next if rules.size < roles.size
---
> next if rules.size < vroles.size
</pre> Redmine - Defect #11887: Issue permission doesn't apply to Administratorshttps://www.redmine.org/issues/11887?journal_id=641212015-06-11T03:49:44ZMischa The Evil
<ul><li><strong>Has duplicate</strong> <i><a class="issue tracker-1 status-5 priority-4 priority-default closed" href="/issues/19417">Defect #19417</a>: status change is allowed with empty workflow-required custom field</i> added</li></ul> Redmine - Defect #11887: Issue permission doesn't apply to Administratorshttps://www.redmine.org/issues/11887?journal_id=666732015-10-16T05:14:39ZToshi MARUYAMA
<ul><li><strong>Has duplicate</strong> <i><a class="issue tracker-1 status-5 priority-4 priority-default closed" href="/issues/20628">Defect #20628</a>: Standard field (Due Date) for Redmine not showing as required.</i> added</li></ul>