David Cook
2fdfbaf0dd
If you manually visit the following links when you only have permission to run reports, you'll still be able to access the ability to create and edit reports: /cgi-bin/koha/reports/guided_reports.pl?phase=Create%20report%20from%20SQL /cgi-bin/koha/reports/guided_reports.pl?phase=Edit%20SQL This patch ties these 2 unaccounted for phases to the create_reports permission. With patch, issue no longer can be reproduced. Signed-off-by: Marc Véron <veron@veron.ch> Signed-off-by: Nick Clemens <nick@bywatersolutions.com> Signed-off-by: Jonathan Druart <jonathan.druart@bugs.koha-community.org> |
||
|---|---|---|
| .. | ||
| acquisitions_stats.pl | ||
| bor_issues_top.pl | ||
| borrowers_out.pl | ||
| borrowers_stats.pl | ||
| cash_register_stats.pl | ||
| cat_issues_top.pl | ||
| catalogue_out.pl | ||
| catalogue_stats.pl | ||
| dictionary.pl | ||
| guided_reports.pl | ||
| issues_avg_stats.pl | ||
| issues_by_borrower_category.plugin | ||
| issues_stats.pl | ||
| itemslost.pl | ||
| itemtypes.plugin | ||
| manager.pl | ||
| orders_by_fund.pl | ||
| reports-home.pl | ||
| reserves_stats.pl | ||
| serials_stats.pl | ||
| stats.print.pl | ||