6.0.0-beta1
7/3/25

[#8370] Restrict "change permissions" to admins
Summary Restrict "change permissions" to admins
Queue Kronolith
Queue Version 2.3.1
Type Enhancement
State No Feedback
Priority 1. Low
Owners
Requester pcravero (at) as2594 (dot) net
Created 06/23/2009 (5854 days ago)
Due
Updated 10/01/2009 (5754 days ago)
Assigned
Resolved 10/01/2009 (5754 days ago)
Milestone
Patch No

History
10/01/2009 10:01:03 PM Jan Schneider State ⇒ No Feedback
 
06/26/2009 02:18:37 PM Chuck Hagenbuch Comment #2
State ⇒ Feedback
Reply to this comment
You can currently turn on $conf['share']['no_sharing'] to prevent 
anyone from editing their calendar permissions. Is that sufficient? Or 
do you need to actively allow admins to do the sharing?
06/23/2009 08:13:15 AM pcravero (at) as2594 (dot) net Comment #1
Priority ⇒ 1. Low
Patch ⇒ No
Milestone ⇒
Queue ⇒ Kronolith
Summary ⇒ Restrict "change permissions" to admins
Type ⇒ Enhancement
State ⇒ New
Reply to this comment
This request comes from an organization with a large, multi-domain, 
user base (>10k).



We need the ability to restrict the possibility to 'change calendar 
permissions' only to users listed in Horde's $conf['auth']['admins'] . 
So only global admins can promote a calendar to group calendar once 
the actual need is verified.



We had patched an old version by wrapping the display of links/icons 
with "if (Auth::isAdmin()) { }" control. This might not be the right 
way to do it, and probably requires an additional configuration 
parameter to toggle this function.



Makes sense?

Saved Queries