by ianmac » Mon Dec 14, 2009 4:45 am
I'm trying to make a completely stripped-down, read-only app.
Before I created this topic I did the following in actions.ini:
- cleared all 'invalid' actions by deleting everything after the header, like:
;; Create a new record
[new]
<deleted>
which I understand to mean that the New action no longer ever has any permission to happen.
- So, all remaining 'valid' actions were in one of the following categories:
table_tabs, find_actions, record_tabs, ajax_actions
(+ login_actions, personal_tools, management_actions, event_actions, which I don't think are relevant here)
- and the only permissions used by the 'valid' actions are:
view, list, find, calendar, ajax_load, find_list, ajax_form
(+ install, manage_*, xml_view, which I don't think are relevant here)
Plus the [Ajax_form] action had the ajax_form permission, and the [Edit_event_details] had the edit permission.
- The only related_* action that has anything at all in it is:
[related_records_list]
mode = browse
template = Dataface_Related_Records_List.html
label = "{$query['-relationship']}"
permission = view
related=1
After your reply, I looked at permissions.ini, but I can't see any need to do anything there after the above, but I went back to actions.ini and changed the [Ajax_form] action permission to view and [Edit_event_details] permission to view. That had no effect.
I can see that unlike ResultList.php, RelatedList.php does not check disable_select_rows, and I may be wrong, but it looks to me like RelatedList.php assumes that edit, etc is allowed if the relationship is many-to-many.
Any idea where am I going wrong?
edit: I have actions:addexisting = 0 and actions:addnew = 0 in both relationships.ini files.