6.0.0-git
2018-12-16

[#11595] selective rw access to addressbooks : Edit "my" contact but make all other contacts readonly
Summary selective rw access to addressbooks : Edit "my" contact but make all other contacts readonly
Queue Turba
Queue Version Git master
Type Enhancement
State Feedback
Priority 1. Low
Owners lang (at) b1-systems (dot) de
Requester lang (at) b1-systems (dot) de
Created 2012-10-30 (2238 days ago)
Due
Updated 2016-01-18 (1063 days ago)
Assigned
Resolved
Milestone
Patch No

History
2016-01-18 15:55:16 Jan Schneider Comment #2
State ⇒ Feedback
Milestone ⇒
Reply to this comment
This could be simplified a lot by adding an option to only (or always) 
allow editing the own_contact preference. Of course this also requires 
the admin to lock that pref and provide a hook for it, but that's just 
documentation.
2012-10-30 13:59:27 Ralf Lang (B1 Systems GmbH) Assigned to Ralf Lang (B1 Systems GmbH)
 
2012-10-30 13:59:11 Ralf Lang (B1 Systems GmbH) Comment #1
Type ⇒ Enhancement
State ⇒ New
Priority ⇒ 1. Low
Summary ⇒ selective rw access to addressbooks : Edit "my" contact but make all other contacts readonly
Queue ⇒ Turba
Milestone ⇒ 5.1
Patch ⇒ No
Reply to this comment
Currently, we use a shared readonly addressbook as an 
organisation-wide GAL. To allow users to edit their own entry, we 
provide an RW accessible second addressbook "me" which contains only 
one entry (by filter).

This makes the user experience a little bit confusing but I found no 
better configuration in existing code.

I'd like to either implement a backend option or an ACL/permission to 
allow filtering which entries a user/group has write access to.

Another option would be to make the UI recognize which ACLs are 
granted to the LDAP bind user but this is probably too much 
introspection and too slow.

Saved Queries