Registrations to Open-AudIT forums are now closed. To ask any new questions please visit Opmantek Community Questions.

Open-AudIT

What's on your network?
It is currently Thu Mar 28, 2024 11:03 pm

All times are UTC + 10 hours




Forum locked This topic is locked, you cannot edit posts or make further replies.  [ 4 posts ] 
Author Message
PostPosted: Fri Aug 11, 2017 11:18 pm 
Offline
Helper

Joined: Wed Aug 08, 2012 1:49 am
Posts: 70
If I create a new org with parent org default org and create a user with the admin org and admin role and select only the new org and not the default org in the grant permission, the report menu does not contain the queries and also the querie key Near export. The query and report menu are only enabled for the default org and the new user must re-create them. Is this correct?
Thanks


Top
 Profile  
Reply with quote  
PostPosted: Tue Aug 22, 2017 8:43 am 
Offline
Site Admin
User avatar

Joined: Mon Jun 07, 2004 11:48 am
Posts: 1964
Location: Brisbane, Australia
The report menu should contain the queries. I'll look into this.

_________________
Support and Development hours available from [url=https://opmantek.com]Opmantek[/url].
Please consider a purchase to help make Open-AudIT better for everyone.


Top
 Profile  
Reply with quote  
PostPosted: Tue Aug 22, 2017 10:44 am 
Offline
Site Admin
User avatar

Joined: Mon Jun 07, 2004 11:48 am
Posts: 1964
Location: Brisbane, Australia
FYI - fixed for next release.
For certain collections (attributes, credentials, groups, queries & summaries) we should allow the user to also view the objects in their parent(s) Orgs.
IE - user A has permission on Org 2, which is a child of Org 1.
User A should be able to view the reports, groups, etc from Org 1.

This extrapolates further down/up the tree. IE - user C belongs to an Org at 5 levels deep, he can see queries for each parent up the tree, as far as Org 1 (default Org). He cannot see those parents other childrens objects though.

I hope that makes sense.

QUESTION. I have implemented this for the above collections (attributes, etc). What do people think about the same logic for fields? Should user A be able to see any fields that belong to the parents (and grandparents, etc)?

_________________
Support and Development hours available from [url=https://opmantek.com]Opmantek[/url].
Please consider a purchase to help make Open-AudIT better for everyone.


Top
 Profile  
Reply with quote  
PostPosted: Tue Aug 22, 2017 6:16 pm 
Offline
Helper

Joined: Wed Aug 08, 2012 1:49 am
Posts: 70
The user must only see the authorized fields of his organization. No of the parental organization.
The logic for the fields is correct :D


Top
 Profile  
Reply with quote  
Display posts from previous:  Sort by  
Forum locked This topic is locked, you cannot edit posts or make further replies.  [ 4 posts ] 

All times are UTC + 10 hours


Who is online

Users browsing this forum: No registered users and 2 guests


You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot post attachments in this forum

Search for:
Jump to:  
cron
Powered by phpBB® Forum Software © phpBB Group