Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Api - Adjust permissions for custom field metadata #31695

Open
wants to merge 1 commit into
base: master
Choose a base branch
from
Open

Api - Adjust permissions for custom field metadata #31695

wants to merge 1 commit into from
+4 −2

Conversation

colemanw
Copy link
Member

@colemanw colemanw commented Jan 2, 2025

Overview

Lowers permission requirements for accessing custom field metadata, so that higher permissions do not need to be granted to so many users.

See https://lab.civicrm.org/dev/core/-/issues/5664

Before

All actions required 'administer CiviCRM' AND 'access all custom data'

After

Permission for create/update/delete reduced to 'administer CiviCRM data',
Permission for get reduced to 'access CiviCRM' OR 'access all custom data'.

Technical Details

Note that this is about accessing the custom field definitions, not the data stored in the custom fields.

@colemanw
Api - Adjust permissions for custom field metadata
98aca87 
Before: All actions required 'administer CiviCRM' AND 'access all custom data'

After: Permission for create/update/delete reduced to 'administer CiviCRM data',
Permission for get reduced to 'access CiviCRM' OR 'access all custom data'.

Fixes dev/core#5664
@civibot civibot
Copy link

civibot bot commented Jan 2, 2025

🤖 Thank you for contributing to CiviCRM! ❤️ We will need to test and review this PR. 👷

Introduction for new contributors...
  • If this is your first PR, an admin will greenlight automated testing with the command ok to test or add to whitelist.
  • A series of tests will automatically run. You can see the results at the bottom of this page (if there are any problems, it will include a link to see what went wrong).
  • A demo site will be built where anyone can try out a version of CiviCRM that includes your changes.
  • If this process needs to be repeated, an admin will issue the command test this please to rerun tests and build a new demo site.
  • Before this PR can be merged, it needs to be reviewed. Please keep in mind that reviewers are volunteers, and their response time can vary from a few hours to a few weeks depending on their availability and their knowledge of this particular part of CiviCRM.
  • A great way to speed up this process is to "trade reviews" with someone - find an open PR that you feel able to review, and leave a comment like "I'm reviewing this now, could you please review mine?" (include a link to yours). You don't have to wait for a response to get started (and you don't have to stop at one!) the more you review, the faster this process goes for everyone 😄
  • To ensure that you are credited properly in the final release notes, please add yourself to contributor-key.yml
  • For more information about contributing, see CONTRIBUTING.md.
Quick links for reviewers...

➡️ Online demo of this PR 🔗

@civibot civibot bot added the master label Jan 2, 2025
@Detsieber
Copy link
Contributor

Detsieber commented Jan 2, 2025
edited
Loading

Tested and works perfect.
Please merge to master!

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
master
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@colemanw @Detsieber