News:

Support the VirtueMart project and become a member

Main Menu

Store vendor information with limited ACL

Started by n3t, February 13, 2018, 02:15:58 AM

Previous topic - Next topic

n3t

Hi,

I configured store owner user as limited user, with limited ACL. User can open store settings, but when he save it, nothing changes.
After long searching I found, that also "Configure ACL & Options" permission has to be set for this user to store the vendor info.
However now the user himself can change his ACL, so open additional parts of VM.

In saveUserData of VirtueMartModelUser this is checked:

if(!vmAccess::manager('core')){
unset($data['virtuemart_vendor_id']);
unset($data['user_is_vendor']);
}


This limitation is IMHO at least very confusing, as there is special ACL for edit shop function. Why Permissions ACL is required?

thanks

Joomla 3.8.5, VM 3.2.2 single vendor mode

K&K media production


Milbo

if(!vmAccess::manager('core')){

means, you must be admininstrator or superuser
Should I fix your bug, please support the VirtueMart project and become a member
______________________________________
Extensions approved by the core team: http://extensions.virtuemart.net/