Kuali Rice Development
  1. Kuali Rice Development
  2. KULRICE-13211

Investigate attachmentTypeCode and KIM Permissions.

    Details

    • Type: Task Task
    • Status: Closed Closed
    • Priority: Major Major
    • Resolution: Fixed
    • Affects Version/s: 2.5.1
    • Fix Version/s: 2.5.1
    • Component/s: Analysis
    • Security Level: Public (Public: Anyone can view)
    • Labels:
      None
    • Similar issues:
      KULRICE-2354KIM Permission Service Test
      KULRICE-7185Optimization of KIM Permission Checks
      KULRICE-4356KIM permission for laborEnterpriseFeederFileSetType (FSKD-528)
      KULRICE-6015Document the various Rice KIM permissions
      KULRICE-3735KIM Permission templates are queried from the DB too often
      KULRICE-4898Remove org.kuali.rice.kew.web.session.Authentication and calls to it. Replace with KIM permissions.
      KULRICE-11190KEW Training: Adding KIM Permission Exercise
      KULRICE-4803Add unique constraint on KIM permission namespace:name
      KULRICE-4566Permission details can't be modified/created through KIM Permission screen
      KULRICE-7458Restore the display of permission/responsibility details on KIM Inquiries
    • Rice Team:
      Middleware
    • Sprint:
      Middleware 2.5.1 Sprint 2
    • KAI Review Status:
      Not Required
    • KTI Review Status:
      Not Required
    • Code Review Status:
      Not Required
    • Include in Release Notes?:
      Yes
    • Story Points:
      5

      Description

      This is related to KULRICE-13090, where it was desired to create a set of KIM permissions which would allow the following scenario…

      A KIM principal receives a Travel Account Maintenance document in its “Action List”, and is able to see the Notes and Attachments section of that document, but is not be able to see the “Download Attachment” button.

      Currently, DocumentAuthorizerBase.canViewNoteAttachment() is called, once to authorize for the visibility of the Notes and Attachments section, and once to authorize for the visibility of the “Download Attachment” button. Authorization for the “Download Attachment” button can be based on “attachment type code”, as canViewNoteAttachment() takes that as an optional parameter.

      I attempted to get the needed KIM permissions in place, but was unsuccessful. I consulted with Kristina, who provided some additional investigation, and it was decided to write up a Jira case to further investigate the situation.

      The goals of this case are …

      • Determine the KIM permissions and roles for the above scenario.
      • If KIM modifications are required, implement those, if they are minor. Any major KIM changes should first be reviewed by a KIM expert.
      • Add an AFT to DemoTravelAccountMaintenanceViewPermissionAft.java to test the scenario.

        Activity

        Kristina Taylor (Inactive) made changes -
        Field Original Value New Value
        Fix Version/s 2.5.1 [ 17833 ]
        Kristina Taylor (Inactive) made changes -
        Rank Ranked higher
        Kristina Taylor (Inactive) made changes -
        Flagged Impediment [ 13060 ]
        Kristina Taylor (Inactive) made changes -
        Rank Ranked higher
        Kristina Taylor (Inactive) made changes -
        Rank Ranked higher
        Kristina Taylor (Inactive) made changes -
        Rank Ranked lower
        Kristina Taylor (Inactive) made changes -
        Rank Ranked lower
        Jonathan Keller made changes -
        Assignee Jonathan Keller [ jkeller ]
        Kristina Taylor (Inactive) made changes -
        Flagged Impediment [ 13060 ]
        Kristina Taylor (Inactive) made changes -
        Rice Team Middleware [ 16023 ]
        Story Points 5
        Kristina Taylor (Inactive) made changes -
        Rank Ranked higher
        Kristina Taylor (Inactive) made changes -
        Sprint Middleware 2.5.1 Sprint 2 [ 412 ]
        Kristina Taylor (Inactive) made changes -
        Rank Ranked higher
        Jonathan Keller made changes -
        Status Open [ 1 ] In Progress [ 3 ]
        Jonathan Keller made changes -
        Jonathan Keller made changes -
        Attachment Attachment_Permission_Test.html [ 87191 ]
        Jonathan Keller made changes -
        Status In Progress [ 3 ] Resolved [ 5 ]
        Resolution Fixed [ 1 ]
        Martin Taylor (Inactive) made changes -
        Status Resolved [ 5 ] Closed [ 6 ]

          People

          • Assignee:
            Jonathan Keller
            Reporter:
            Steve Edgar (Inactive)
          • Votes:
            0 Vote for this issue
            Watchers:
            3 Start watching this issue

            Dates

            • Created:
              Updated:
              Resolved:

              Agile

                Structure Helper Panel