Users and Roles - Confusion and Wierd behaviour
Submitted by Guest on Sat, 08/12/2012 - 12:55
Our clinic has users setup very simply
We have VETS and Nurses
We have 2 role Profiles
Nurses
<option id="c_16561_item_0">Act Relationships Remove</option>
<option id="c_16561_item_1">Appointment Remove</option>
<option id="c_16561_item_2">Contacts Remove</option>
<option id="c_16561_item_3">Counter Sale Charges Removal</option>
<option id="c_16561_item_4">Counter Sale Item Removal</option>
<option id="c_16561_item_5">Create. All</option>
<option id="c_16561_item_6">Customer Account Act Remove</option>
<option id="c_16561_item_7">Customer Alert Remove</option>
<option id="c_16561_item_8">Customer Balance Remove</option>
<option id="c_16561_item_9">Customer Charge Items Remove</option>
<option id="c_16561_item_10">Customer Charges Remove</option>
<option id="c_16561_item_11">Customer Document Remove</option>
<option id="c_16561_item_12">Customer Estimation Remove</option>
<option id="c_16561_item_13">Customer Note Remove</option>
<option id="c_16561_item_14">Customer Payments Remove</option>
<option id="c_16561_item_15">Customer Refund Remove</option>
<option id="c_16561_item_16">Document Remove</option>
<option id="c_16561_item_17">Entity Relationships Remove</option>
<option id="c_16561_item_18">Identity Remove</option>
<option id="c_16561_item_19">Participations Remove</option>
<option id="c_16561_item_20">Patient Alert Remove</option>
<option id="c_16561_item_21">Patient Clinical Act Remove</option>
<option id="c_16561_item_22">Patient Document Remove</option>
<option id="c_16561_item_23">Patient Investigation Remove</option>
<option id="c_16561_item_24">Patient Medication Remove</option>
<option id="c_16561_item_25">Patient Reminder Remove</option>
<option id="c_16561_item_26">Products Remove</option>
<option id="c_16561_item_27">Save. All</option>
<option id="c_16561_item_28">Stock Transaction Remove</option>
<option id="c_16561_item_29">Task Remove</option>
and ADMINISTRATORS<option id="c_16611_item_0">Create. All</option><option id="c_16611_item_1">Remove. All</option><option id="c_16611_item_2">Save. All</option>In the Categories section we have the standard Administrator, Clinician, Nurse, ReceptionsOur nurses are generally give the categories Nurse and ReceptionistHowever with this setup1. Nurses cannot change a product price ( the edit button simply isnt there) despite having the "Create.all and Save.all roles" however if I change the Categories to include Administrator they can update prices....2. Nurse cannot preview DOCUMENTS unless they have the document remove role is that right? seemed wierd. I cant remember which exact role it was but I found I just had to keep adding the remove roles until preview workedI think some sort of rework/simplification of this system is required to make the control of priveledge more obvious.I was trying to limit non admin staff from deleting customers etc or deleting invoices but I couldnt work out the limits so in the end just added until it all worked. I will say this ...the lack of a role should NOT generate an internal error...it should generate a custom error starting the user doesnt have the priveledges to accomplish the task possibly even defining the role that is missing.Ben C
Re: Users and Roles - Confusion and Wierd behaviour
Ben you are correct in saying that the user priviledges support need to be revisited.
This should be a task for 1.7.
Regarding your points:
1. Currently, users must have administrator rights to edit products.
2. Previewing a document requires the creation of a temporary document internally, which must be subsequently removed. In order to do this, document removal permissions are required.
-Tim