A user is given permission for below.
Problem is the user is able to see Bank transactions whereas he is only given access to one cash account. I understand user will be able to see all overview transactions in the customer ledger. But in my view, he shouldn’t be able to edit/view the transaction just like how sales invoice is working currently. By implementing this the user permission will be consistent thought out all modules.
He should not be able to do that. He should not be able to edit the bank transactions of banks he is restricted from.
I agree with you but the user still can View Bank transactions from Customer ledger despite got no access to Bank Account whereas he isn’t able to view Sales Invoice as he has no access to the module. So technically all module should work consistently.
It working. You need to see all the transactions affecting the customer 's balance. You shouldn’t be able to edit the transactions generated from the tabs you have been locked from.
Yeah but the user shouldn’t be able to view or edit the transactions to see inner content as he isn’t given access to Bank Accounts. The user’s access shall only be limited to overview transactions.
Dear @lubos, I want to bring this to your attention.
A limited user is still able to do some transactions and even have access bank accounts he is restricted from. The only thing the restricted user needs is a view permission.
In the picture below the restricted user though not permitted to use the bank account was able to use the bank account in a transaction by simply creating a clone of the transaction he can view. I think this is the problem that @raJ was raising.
The user has access to only the petty cash account yet he is able to duplicate a bank payment transaction with a bank account he is restricted from. He can duplicate this from the purchases invoice tab, he just has to click on the balance and duplicate the payment in the transaction list, he can do that from every tab where he can access any payment transaction.
He should see the transactions but not have the ability to duplicate it with the bank account or cash account he is restricted from.
You can easily correct this problem by emptying the Bank/Cash account field when a transaction is cloned (like how it works with the Reference field) so that the user will be forced to choose from his permitted accounts.
Thank you.
this suggestion will be an inconvenience to majority of users. the purpose of cloning and Form Defaults is to reduce the work involved. there is no point if we take away efficient functions to fix something.
@sharpdrivetek, just because cloning makes work easy does not mean it should override permission settings in the system. It makes the cash and bank account permission settings useless as a user can use the cloning system to override/beat that control.
@Abeiku i did understand your concern and i am not against it. i was only commenting on your suggestion to empty the bank/cash account field. as you already know Manager features and functionalities are common across all editions. so if it is implemented in the way you suggested, it will only cause inconvenience to desktop users who do not have multiple users.
1 Like
Well yes if @lubos finds a way to resolve this in a way which is better than my suggestion then that would be great but at the moment the bank/cash control/permission feature is falsity as I have clearly demonstrated how users could explore the software to eliminate that control.
You have to also remember that a good software puts consistency ahead of convenience else there wouldn’t be the need for control features.