SteveClement
commented
5 years ago Reading the code hints at what you are mentioning. As far as I see there is no way to have this more fine-grained.
Open ancailliau opened 6 years ago
SteveClement
commented
5 years ago Reading the code hints at what you are mentioning. As far as I see there is no way to have this more fine-grained.
JakubOnderka
commented
3 years ago Hello, this is already fixed and user from the same org can see event creator email.
The list of permission is coarse-grained and does not allow for finer-grained role specification.
The problem I have is that the email address on events is only shown to "Site Admin", but we use that to identify the user who created the event if more information is needed. Making all users "Site Admin" is not an option.
What is the prefered solution for the MISP project ? I can add a new permission "Email viewer" (or whatever the name), but it might feel a little bit ad hoc.
On the long term, I would favor a (long) list of fine-grained permissions that we can use when defining roles.