| Subject: | Add "Access" controls for "Additional Fields" on the "Employee Profile" |
| Summary: | Tested case in version 11.30 Concern: Employees are able to "Edit and Update" additional fields on their profile. Step to Replicate - User E013 has the "ESS Employee" role.
- User does not have access to "Additional Fields".
- Login into LinkWeb.
- Navigate to "Employee Profile - Employee Profile - Additional Fields".
- Edit and Update an item under the "Additional Fields" . This is saved.
Here, users can entry any random values which can cause issues in the data processing. For approval. |
| Audit Notes: | Edited by rashna on 17/10/19 13:10. Edited by rashna on 15/10/19 08:32. Edited by rashna on 09/10/19 16:45. Edited by rashna on 24/09/19 09:05. |
| 23 Sep 2019 | 02:31PM Comment 1 by Rashna (Edge Business Solutions) Case 11742 added to project 11.004.BETA |
| 24 Sep 2019 | 09:05AM Comment 2 by Rashna (Edge Business Solutions) Case 11742 removed from project 11.004.BETA |
| 24 Sep 2019 | 09:05AM Comment 3 by Alvis (Link Technologies) Case 11742 added to project 11.004.BETA |
| 05 Oct 2019 | 08:12AM Comment 4 by Sanjay (Link Technologies) Assigned To: Rashna (Edge Business Solutions) Followup Date: 05-10-2019 08:12 AM Time Taken: 1.00 |
| Hi Rashna, access to additional fields can be controlled, however, we do not enable additional fields by Module. If users have access to update additional fields, we need to be careful not to use additional fields to handle critical business processes. Can you put some use cases where this is an issue? then bring this to a discussion where we can decide how we handle this requirement.
|
|
| 07 Oct 2019 | 10:18AM Comment 5 by Sanjay (Link Technologies) Assigned To: Development Followup Date: 07-10-2019 10:18 AM Time Taken: 4.00 |
| Development work for this case has been completed. The change will be available in version:11.004 1. The following changes were made(Include Database object names, Program classes and any other relevant information): - Changed menu select to include MenuID with ModuleName
- Changed "Additional Fields", "Notes", "Attachments", and "Module Configurations" to implement above change.
2. Affected Areas: - Additional Fields - Add, Edit - Use employee Maintenance
- Notes - Add, Edit, Delete - Use employee maintenance
- Attachments - Add, Edit, Delete - Use employee maintenance
- Module Configuration - Edit - Use Timesheet Rules
3. The issue was caused by: - Improvement
4. Notes:
5. Next Step: UAT |
|
| 09 Oct 2019 | 04:45PM Comment 6 by Rashna (Edge Business Solutions) Case 11742 removed from project 11.004.BETA |
| 09 Oct 2019 | 04:45PM Comment 7 by Alvis (Link Technologies) Case 11742 added to project 11.004.BETA |
| 14 Oct 2019 | 08:08AM Comment 8 by Rashna (Edge Business Solutions) Assigned To: Alvis (Link Technologies) Followup Date: 14-10-2019 11:51 AM Time Taken: 1.00 |
| QA Results Tests carried out according to requirements specified on the case header Test Results Summary Table 1 - Summarised list of issues | No | Test Description | Pass/Fail | | 1 | Enable "Active" and "Edit" access for following menus - PR001 - Employee Profile
- HR421 - Employee Maintenance
Users should have access to the menu and edit - Additional Notes
- Notes
- Attachments
| Pass | | 2 | Enable "Active" access for following menus - PR001 - Employee Profile
- HR421 - Employee Maintenance
Users should not be able to add or edit the below - Additional Notes
- Notes
- Attachments
| Fails. Users are able to add "Notes" under Employee Profile. - User has only "Active" access to Employee Profile.
- User does not have access to "Can Modif Notes"
| | 3 | Users should be able to edit Timesheet Rules without errors | Pass |
Environment Details - OS version: Windows Server 2012
- Application version: 11.4.1010
- Setup: Demo
- Server : 10.0.0.14
- Database: LINKSOFT-DEMO-11-RASHNA
Next Step: - To Review
|
|
| 14 Oct 2019 | 10:20AM Comment 9 by Sanjay (Link Technologies) Assigned To: Development Followup Date: 14-10-2019 01:59 PM Time Taken: 1.00 |
| Development work for this case has been completed. The change will be available in version:11.004 1014 1. The following changes were made(Include Database object names, Program classes and any other relevant information): - Changed the Notes update procedure to validate the menu "Can modify notes [FR080]" when adding a new record.
2. Affected Areas: - Notes - Add
3. The issue was caused by: - Notes -Add was not checking the "Allow Add" security
4. Notes:
5. Next Step: UAT |
|
| 15 Oct 2019 | 08:32AM Comment 10 by Rashna (Edge Business Solutions) Case 11742 removed from project 11.004.BETA |
| 15 Oct 2019 | 08:32AM Comment 11 by Alvis (Link Technologies) Case 11742 added to project 11.004.BETA |
| 17 Oct 2019 | 09:54AM Comment 12 by Rashna (Edge Business Solutions) Assigned To: Sanjay (Link Technologies) Followup Date: 17-10-2019 01:51 PM Time Taken: 1.00 |
| QA Results Tests carried out according to requirements specified on the case header Test Results Summary Table 1 - Summarised list of issues | No | Test Description | Pass/Fail | | 1 | Enable "Active" access for following menus - PR001 - Employee Profile
- HR421 - Employee Maintenance
Users should not be able to add or edit the below - Additional Notes
- Notes
- Attachments
| Pass |
Environment Details - OS version: Windows Server 2012
- Application version: 11.4.1016
- Setup: Demo
- Server : 10.0.0.14
- Database: LINKSOFT-DEMO-11-RASHNA
Next Step: - Closure
|
|
| 17 Oct 2019 | 01:10PM Comment 13 by Rashna (Edge Business Solutions) Case 11742 removed from project 11.004.BETA |
| 17 Oct 2019 | 01:10PM Comment 14 by Alvis (Link Technologies) Case 11742 added to project 11.004.BETA |