#171 Reports and ACL

open
nobody
None
5
2006-08-30
2006-08-30
L5eoneill
No

We have groups set up with different access levels, but
specific reports are not following the rules, in a way.
If a group has no permission to see Opportunities
(therefore keeping them out of the financial picture),
but needs to be able to run reports such as Company
List, Companies by CRM Status, etc, that lets them run
-- under Opportunities in the Graphs section -- "Size
by Industry" and "Size by Status" which lets them see
the overall financial picture that blocking them from
Opportunities is supposed to prevent.

Don't know how ACL could fix this type of problem. And
is this a bug report or a feature request?

As a work-around, I've added a user-role wrapper
surrounding the specific row(s) in reports/index.php
that we don't want a role to have access to:

<?php
if(!check_user_role(false,
$_SESSION['session_user_id'], '[name of role]')) {
?>
[html for the row]
<?php
}
?>

Tried using the function:
check_role_access("Oppportunity",
$_SESSION['session_user_id'])
but received errors "call to a non-member group..." or
something like that (could pull it up again if needed).
But did a search and found nowhere in XRMS that
actually uses that function, so maybe it's just unfinished.

Discussion