dhis2-users team mailing list archive
-
dhis2-users team
-
Mailing list archive
-
Message #13002
Dashboard sharing access rights
-
To:
dhis2-users@xxxxxxxxxxxxxxxxxxx <dhis2-users@xxxxxxxxxxxxxxxxxxx>
-
From:
TIMIMI, Hazim Bakir <timimih@xxxxxxx>
-
Date:
Thu, 6 Apr 2017 11:43:17 +0000
-
Accept-language:
en-GB, en-US
-
Authentication-results:
lists.launchpad.net; dkim=none (message not signed) header.d=none; lists.launchpad.net; dmarc=none action=none header.from=who.int;
-
Spamdiagnosticmetadata:
NSPM
-
Spamdiagnosticoutput:
1:99
-
Thread-index:
AdKuyvtsxbZI6a+jQy613zdWSoBS1w==
-
Thread-topic:
Dashboard sharing access rights
Dear DHIS2 friends,
I wonder if anyone else has come across the following problem and, if so, how you solved it: All dashboards on our instance have their public access (with login) sharing setting as 'Can View'. However users are able to remove or resize objects in the dashboard which affects everybody else!
I have tried restricting public access to 'None' and only granting 'Can View' to a specific user group, and 'Can Edit and View' to a very small number, but I still find users in the group with 'Can View' permission are able to remove objects from the dashboards.
We are using v 2.25, but I can reproduce the problem in v2.26 on https://play.dhis2.org/demo/.
This bug was logged in Jira a while ago (https://jira.dhis2.org/projects/DHIS2/issues/DHIS2-500) and I also logged another request for a warning dialog to appear when users click on the 'Remove' link (https://jira.dhis2.org/browse/DHIS2-1383).
Any help or pointers would be much appreciated!
Thanks,
Hazim
…..
Hazim Timimi
Data Manager, Tuberculosis Monitoring and Evaluation, World Health Organization, Geneva, Switzerland
Tel : +41 22 791 3468
