Still can add, remove, update roles even if role has no permissions over roles resource

Silvanite / novatoolpermissions

Laravel Nova Permissions Tool (User, Roles and Permissions / Access Control (ACL))

MIT License

101 stars 33 forks source link

Still can add, remove, update roles even if role has no permissions over roles resource #26

Open florinmatthew opened 5 years ago

florinmatthew commented 5 years ago

error

new_role

Added a role as content editor. As this image shows, I can still see Roles and even add and remove roles.

m2de commented 5 years ago

Hi @florinmatthew . Do you have any other Roles setup which have rights to Assign Roles? If so, are these roles assigned to any users? If nobody has access to a specific role, the system will default to grant everyone access.

florinmatthew commented 5 years ago

@m2de Yes, I do: admin_assign_roles

m2de commented 5 years ago

Strange one. Might need to have a bit more information about your codebase (e.g. have you customised the default Policies or is everything related to the Permissions tool / Brandenburg the default setup?).

Also, what versions of Laravel, Nova etc are you running please?

Many thanks.

florinmatthew commented 5 years ago

@m2de Nothing customized. No additional policies added. About the version: Nova - v1.1.3; Laravel 5.7;

m2de commented 5 years ago

Hi @florinmatthew. I will need to try and reproduce this issue, will update you when I have had a chance to do so. Cheers!

greensunrise commented 5 years ago

@m2de I followed the steps described in the doc but I get this error despite using the trait. image_url