b8a2365a34
Without this patch only catalogue permission was required for managing suggestions. This patch adds a new permission in the acquisition module do manage suggestions and updates staff user permissions accordingly. To test: - Make sure there is a pending suggestion - Create a few users with different permission sets: - User 1: only catalogue - User 2: any acquisition permission - User 3: cataloguing permission - Check all of them can access: /cgi-bin/koha/suggestion/suggestion.pl - Apply the patch - Verify all of them now have the suggestions_manage permission - Verify everything displays correctly on: - intranet start page - patron account in staff - acquisition start page - suggestion page (try to access by URL too) - Remove suggestions_manage for a staff user - Repeat tests above, access should be denied/links not visible Bonus: - Fixes the link on the acquisition start page for late orders to mage the permissions of the page itself: order_receive Signed-off-by: Séverine QUEUNE <severine.queune@bulac.fr> Signed-off-by: Jonathan Druart <jonathan.druart@bugs.koha-community.org> Signed-off-by: Nick Clemens <nick@bywatersolutions.com>
33 lines
1.8 KiB
HTML
33 lines
1.8 KiB
HTML
<div id="navmenu">
|
|
<div id="navmenulist">
|
|
<h5>Acquisitions</h5>
|
|
<ul>
|
|
<li><a href="/cgi-bin/koha/acqui/acqui-home.pl">Acquisitions home</a></li>
|
|
[% IF ( CAN_user_acquisition_order_receive ) %]<li><a href="/cgi-bin/koha/acqui/lateorders.pl">Late orders</a></li>[% END %]
|
|
[% IF ( suggestion && CAN_user_acquisition_suggestions_manage ) %]<li><a href="/cgi-bin/koha/suggestion/suggestion.pl">Suggestions</a></li>[% END %]
|
|
<li><a href="/cgi-bin/koha/acqui/invoices.pl">Invoices</a></li>
|
|
[% IF CAN_user_acquisition_edi_manage %]
|
|
<li><a href="/cgi-bin/koha/acqui/edifactmsgs.pl">EDIFACT messages</a></li>
|
|
[% END %]
|
|
</ul>
|
|
[% IF ( CAN_user_acquisition_period_manage || CAN_user_acquisition_budget_manage || CAN_user_parameters || CAN_user_acquisition_edi_manage ) %]
|
|
<h5>Administration</h5>
|
|
<ul>
|
|
<li><a href="/cgi-bin/koha/admin/admin-home.pl">Administration home</a></li>
|
|
[% IF ( CAN_user_acquisition_period_manage ) %]
|
|
<li><a href="/cgi-bin/koha/admin/aqbudgetperiods.pl">Budgets</a></li>
|
|
[% END %]
|
|
[% IF ( CAN_user_acquisition_budget_manage ) %]
|
|
<li><a href="/cgi-bin/koha/admin/aqbudgets.pl">Funds</a></li>
|
|
[% END %]
|
|
[% IF ( CAN_user_acquisition_currencies_manage ) %]
|
|
<li><a href="/cgi-bin/koha/admin/currency.pl">Currencies</a></li>
|
|
[% END %]
|
|
[% IF CAN_user_acquisition_edi_manage %]
|
|
<li><a href="/cgi-bin/koha/admin/edi_accounts.pl">EDI accounts</a></li>
|
|
<li><a href="/cgi-bin/koha/admin/edi_ean_accounts.pl">Library EANs</a></li>
|
|
[% END %]
|
|
</ul>
|
|
[% END %]
|
|
</div>
|
|
</div>
|