L3 - Default
Brief summary of the bug. What is it ? Where is it ?
Steps to reproduce:
- Create a process, deploy and start an instance.
- Give Read only user authorization to Optimize user
entity: # which users are authorized to create/edit/delete Optimize entities outside of a collection. # Available options: 'all', 'superuser', 'none' authorizedEditors: "all"
3. Login to Optimize
4. Create a collection/dashboard using magic link
Magic link is hidden on the Processes page but Read only user can create collection/dashboard using the magic link on browser.
Read only user shouldn't be able to create collection/dashboard using magic link on browser. We can show an error message and navigate the user to the main page of Optimize or Processes page(can be discussed).
This is the controller panel for Smart Panels app
- is related to
OPT-6334 Validate against entity creation for READ users