| Subject: | Review the access for "519-1-Product Cost" |
| Summary: | Steps to Replicate - Enter the last cost for product 01068 a s$5.00
- Go to "Role Menu Access".
- Select a user.
- Disable the access "Active", "Read", "Write" and "Delete" access for "519-1-Product Cost".
- Go to menu 519. The cost field is disabled. This is correct.
- Generate the "Inventory Master Detail Listing" report with the user account. Cost is printed in the report.
We need to enable this security on the menus and reports. |
| Audit Notes: | Edited by alvis on 10/02/21 16:56. Edited by alvis on 08/05/20 15:42. Edited by alvis on 08/05/20 15:42. Edited by alvis on 04/05/20 10:59. Edited by sanjay on 13/08/19 10:33. Edited by sanjay on 05/08/19 16:26. |
| 02 Aug 2019 | 12:30PM Comment 1 by Rashna (Edge Business Solutions) Case 10534 added to project 11.0 |
| 05 Aug 2019 | 04:26PM Comment 2 by Sanjay (Link Technologies) Assigned To: Rashna (Edge Business Solutions) Followup Date: 05-08-2019 04:26 PM |
| Hi Rashna, The purpose of the security was to prevent data entry operators from seeing the cost of In Stock amounts. This is done at the SCREEN levels. For Reports, the "use case" is usually for management where the user is given specific access to inventory in order to analyze the actual levels and costs. Using the security in the report would not be viable as some reports have computations that will shoe the levels by simple reverse calculations. I would ask the users to REMOVE ACCESS from reports that are sensitive instead of masking the entries. |
|
| 05 Aug 2019 | 04:26PM Comment 3 by Sanjay (Link Technologies) Case 10534 removed from project 11.0 |
| 13 Aug 2019 | 09:04AM Comment 4 by Rashna (Edge Business Solutions) Assigned To: Sanjay (Link Technologies) Followup Date: 23-08-2019 12:00 AM Time Taken: 0.50 |
| Hi Sanjay, There is an inconsistency with the control "519-1-Show Product Cost". - Disable the access for user "Admin".
- Generate the "Inventory Listing" report with show cost as "Y". The cost is not printed. The cost column shows ****.
- Generate the "Inventory Master Listing Report". This prints the cost.
- The above shows the access is not consistent.
With respect to comment 2, removing access is not a suitable workaround. In most cases users should be able to generate the report for analysis. For example,in the case of "Inventory Master Listing Report" if users want to know all products sold at "Allow Negative", they would need to generate the report. Please review and advise.
Thanks
Rashna
|
|
| 20 Aug 2019 | 10:30PM Comment 5 by Sanjay (Link Technologies) Assigned To: Development Followup Date: 20-08-2019 10:30 PM |
| Hi Rashna, I will move this case to development ~> Design and review this in the next week. |
|
| 04 May 2020 | 10:59AM Comment 6 by Alvis (Link Technologies) Case L10534 added to project 11.6 |
| 08 May 2020 | 03:42PM Comment 7 by Alvis (Link Technologies) Case L10534 added to project 11.5 |
| 08 May 2020 | 03:44PM Comment 8 by Sanjay (Link Technologies) Assigned To: Rashna (Edge Business Solutions) Followup Date: 08-05-2020 07:42 PM Time Taken: 32.00 |
| Development work for this case has been completed. The change will be available in version:11.5.0508 1. The following changes were made(Include Database object names, Program classes and any other relevant information): - Implemented security access "Stock Level View" and "Show Product Cost" to all web forms and reports
2. Affected Areas: - Inventory Web forms and reports
3. The issue was caused by: - Improvement
4. Notes:
5. Next Step: UAT |
|
| 15 May 2020 | 01:48PM Comment 9 by Rashna (Edge Business Solutions) Assigned To: Alvis (Link Technologies) Followup Date: 15-05-2020 05:12 PM Time Taken: 1.00 |
| QA Results Tests carried out according to requirements specified on the case header Test Results Summary Table 1 - Summarised list of issues | No | Test Description | Pass/Fail | | 1 | Disable Access for "Stock Level View" and "Show Product Cost". Validate that the stock and cost of the inventory is hidden on below menus - Product Master
- Stock Adjustment
- Stock Take
- Stock Transfer
- Stock Replenishment
- Purchase Request
- Purchase Order
- Valuation
Enable the access the stock and cost of the inventory should be seen.
| Pass | | 2 | Disable Access for "Stock Level View" and "Show Product Cost". Validate that the stock and cost of the inventory is hidden on below reports - Inventory Adjustment Report
- Inventory Cost Listing
- Inventory Dead Stock Report
- Inventory Listing
- Inventory Master Detail Listing
- Inventory Movement (Last 7 days)
- Inventory Movement Report
- Inventory Sell Price Listing
- Inventory Transfer Listing
- Inventory Transfer Delivery Listing
- Inventory Valuation Report
- Enable the access the stock and cost of the inventory should be seen.
| Fails. - Set the access as "Active" for "Show Product Cost".
- The cost is sent in the web forms (Correct).
- Cost is hidden in the reports . This should show too.
|
Environment Details - OS version: Windows Server 2012
- Application version: 11.5.0514
- Setup: Demo
- Server : 10.0.0.14
- Database: LINKSOFT-DEMO-11-RASHNA
Next Step: - Review
|
|
| 18 May 2020 | 09:05AM Comment 10 by Sanjay (Link Technologies) Assigned To: Rashna (Edge Business Solutions) Followup Date: 18-05-2020 12:33 PM Time Taken: 2.00 |
| Development work for this case has been completed. The change will be available in version:11.5.0518 1. The following changes were made(Include Database object names, Program classes and any other relevant information): - The security check for these reports was checking for BackOffice menu which has been migrated to the web. Changed the security framework to look into web menus.
2. Affected Areas: - Reports listed above
3. Notes:
4. Next Step: UAT |
|
| 18 May 2020 | 02:42PM Comment 11 by Rashna (Edge Business Solutions) Assigned To: Rashna (Edge Business Solutions) Followup Date: 18-05-2020 06:37 PM Time Taken: 1.00 |
| QA Results Tests carried out according to requirements specified on the case header Test Results Summary Table 1 - Summarised list of issues | No | Test Description | Pass/Fail | | 1 | Disable Access for "Stock Level View" and "Show Product Cost". Validate that the stock and cost of the inventory is hidden on below reports - Inventory Adjustment Report
- Inventory Cost Listing
- Inventory Dead Stock Report
- Inventory Listing
- Inventory Master Detail Listing
- Inventory Movement (Last 7 days)
- Inventory Movement Report
- Inventory Sell Price Listing
- Inventory Transfer Listing
- Inventory Transfer Delivery Listing
- Inventory Valuation Report
Enable the access the stock and cost of the inventory should be seen.
| Pass |
Environment Details - OS version: Windows Server 2012
- Application version: 11.0.0506
- Setup: Demo
- Server : 10.0.0.14
- Database: LINKSOFT-DEMO-11-RASHNA
Next Step: - Documentation
- Users need to select option to view cost or price for Reports that have show "Cost or Price" as Yes/No
|
|
| 27 May 2020 | 02:25PM Comment 12 by Rashna (Edge Business Solutions) Assigned To: Rashna (Edge Business Solutions) Followup Date: 27-05-2020 06:08 PM Time Taken: 1.00 |
| Hi Sanjay, Documentation has been updated at LinkSOFT\LinkWebApplicationsPortal\Global Administration\Security_Controls.htm Thanks
Rashna |
|