Announcement

**manuel7b** · 10-18-2017, 03:01 PM

Sorry, forgot to write that Contract is a custom Entity with Many-to-One relationship to Account.

**tanya** · 10-18-2017, 03:01 PM

Hello

You can redefine rowActionsView class in clientDefs in relationshipPanels section. Then add your action to your view class.

clientDefs , alter list row items - EspoCRM Open Source Community Forum

http://forum.espocrm.com/forum/developer-help/25749-clientdefs-alter-list-row-items

Hello, I know that I can remove the select, create, and remove actions from record list views in a relationship panel via clientDefs, e.g.:

**manuel7b** · 10-18-2017, 03:06 PM

Hi Tanya,

thanks for your reply. I can already see the action Select on the Relationship Panel. The problem is when I try to select a record from the modal that appears upon pressing Select.

**tanya** · 10-19-2017, 07:40 AM

Did you set select and create properties in false?

Code:

"select": false,
        "create": false

**manuel7b** · 10-19-2017, 07:48 AM

The actions are already set as expected.

The problem is in the modal panel. When I try to select the Contract from within the modal panel I get Error 403 Access Denied.

**tanya** · 10-19-2017, 08:03 AM

Check permissions (roles)

**manuel7b** · 10-19-2017, 08:06 AM

As I have already written, the team which the user belongs to has only Read permission on Contracts enabled for its role.

Everything works fine if I set the Edit permission, but I don't want the user to be able to Edit the Contracts. She must only be able to select them in the relationship panel and view them.

**manuel7b** · 10-19-2017, 01:09 PM

This code, taken from client/src/views/modals/select-records.js:

PHP Code:


onClick: function (dialog) {
                        var listView = this.getView('list');

                        if (listView.allResultIsChecked) {
                            var where = this.collection.where;
                            this.trigger('select', {
                                massRelate: true,
                                where: where
                            });
                        } else {
                            var list = listView.getSelected();
                            if (list.length) {
                                this.trigger('select', list);
                            }
                        }
                        dialog.close();
                    }

What does

PHP Code:


this.trigger('select', list)

do? I mean, what JS/PHP file is being called? How can I find what SELECT does?

**manuel7b** · 10-19-2017, 01:27 PM

Ok, thanks. Am I right assuming the Select in the Modal panel is using select-records.js?

**manuel7b** · 10-20-2017, 09:37 AM

I was able to replicate the exact same issue with Opportunities. The role assigned to the team the user belongs to has Read ('all') permission. She can see the Opportunity assigned to her in the modal panel, but she gets a 403 error when trying to select it within the modal panel.

This is happening in the Opportunities relationship panel in the Contact detail page.

**manuel7b** · 10-20-2017, 10:43 AM

In the browser console, I see this error:

HTML Code:

POST http://localhost:4000/api/v1/Contact.../opportunities 403 (Forbidden)

Where can I configure/disable the ACL for a particular Relationship panel? Is it client-side? Is it server-side?

**manuel7b** · 10-23-2017, 10:51 AM

Still trying to understand how this all thing works.

In client/src/views/detail.js, this is the code that triggers the above mentioned POST:

PHP Code:


$.ajax({
  url: self.scope + '/' + self.model.id + '/' + link,
  type: 'POST',
  data: JSON.stringify(data),
  success: function () {
  this.notify('Linked', 'success');
  this.updateRelationshipPanel(link);
  this.model.trigger('after:relate');
 }.bind(this),
 error: function () {
  this.notify('Error occurred', 'error');
 }.bind(this)
})

The url in that snippet is: Account/59b6a784df8d06718/xContracts

What server-side code replies to this Ajax POST?

**manuel7b** · 10-23-2017, 11:41 AM

Thanks tanya.

That pointed me to actionCreateLink in application/Espo/Core/Controllers/Record.php.

I can't see anything related to ACL in this method, at least to the best of my knowledge. Should I override this method somewhere?

**tanya** · 10-23-2017, 11:46 AM

Of course you can override the controller. Better to change it for particular entity, not in core for all entities

Sharing Calendar with all team members - EspoCRM Open Source Community Forum

http://forum.espocrm.com/forum/general/3568-sharing-calendar-with-all-team-members

Hi, I have 5 Team Leaders... each has 10 Appointment Bookers underneath... the job of Appointment Bookers is to go thru Leads that were assigned to them by

Announcement

Select entity for relationship panel

Select entity for relationship panel

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment