Tweaks to permissions

2022-03-07 12:06:41 +00:00
parent d98d6ddd1b
commit 7206bfc851
1 changed files with 5 additions and 5 deletions
--- a/src/Database/Seeds/OrganisationPermissions.php
+++ b/src/Database/Seeds/OrganisationPermissions.php
@@ -171,26 +171,26 @@ class OrganisationPermissions extends BaseSeed
            'update_org_user_field' => new Permission([
                'slug'        => 'update_user_field',
                'name'        => 'Edit organisation member',
-                'conditions'  => "subset(fields,['roles','organisations'])",
+                'conditions'  => "subset(fields,['organisations'])",
                'description' => 'Edit users who are in any organisation.',
            ]),
            'view_org_user_field' => new Permission([
                'slug'        => 'view_user_field',
                'name'        => 'View organisation member',
-                'conditions'  => "in(property,['roles','organisations'])",
+                'conditions'  => "in(property,['organisations'])",
                'description' => 'View certain properties of any user in any organisation.',
            ]),

            'update_org_user_field_own' => new Permission([
                'slug'        => 'update_user_field',
                'name'        => 'Edit organisation member',
-                'conditions'  => "can_admin_via_orgs(self.id, user.id) && subset(fields,['name','email','locale','password'])",
+                'conditions'  => "can_admin_via_orgs(self.id, user.id) && subset(fields,['organisations'])",
                'description' => 'Edit users who are in an organisation they are a member of.',
            ]),
            'view_org_user_field_own' => new Permission([
                'slug'        => 'view_user_field',
                'name'        => 'View organisation member',
-                'conditions'  => "similar_orgs(self.id, user.id) && in(property,['user_name','name','locale','email','organisations','activities'])",
+                'conditions'  => "similar_orgs(self.id, user.id) && in(property,['organisations'])",
                'description' => 'View certain properties of any user in their organisation.',
            ]),

@@ -203,7 +203,7 @@ class OrganisationPermissions extends BaseSeed
            'promote_organistion_member_own' => new Permission([
                'slug'        => 'promote_organistion_member',
                'name'        => 'Promote organisation member/Demote organisation administrator',
-                'conditions'  => "is_organisation_admin(self.id,organisation.id) && (is_organisation_member(user.id,organisation.id) || is_organisation_admin(user.id,organisation.id))",
+                'conditions'  => "is_organisation_admin(self.id) && (is_organisation_member(user.id,organisation.id) || is_organisation_admin(user.id,organisation.id))",
                'description' => 'Promote an organisation member from your own organisation to administrator status or demote and administrator to member status.',
            ]),
        ];