Open jillpe opened 10 months ago
The user above only has permission to add to the following collections
@jillpe the language above implies there should be a list of approved collections the user can add to. Do we have that list anywhere?
No, but I will get clarification (I'm pretty sure it's just the collection they created)
004268589@cpp.edu
is a member of the managers-pomona
group Hyrax::CollectionTypeParticpant
records exist for 004268589@cpp.edu
. The existence of these records are what grant this user :create
and :manage
access to all newly created User Collections Hyrax::PermissionTemplateAccess.where(agent_id: "004268589@cpp.edu")
Collection.where(depositor: '004268589@cpp.edu')
Hyrax::CollectionTypeParticipant
records 004268589@cpp.edu
's access from all collections they have individual access to that they did not create11 Note that they are in the managers-pomona
group, so they should still retain access to all collections that group has been granted access to
On hold pending approval from the client to move forward with the Proposed Solution (see previous comment)
This sounds good to me, Kiah. I approve.
The user in question should no longer have access to collections they did not create, nor should they be granted access to every newly created collection moving forward
@dswalker will review and test and provide feedback.
Summary
The following user ends up with permissions to add to all collections and should not have that.
Accepted Criteria