2023-04-18 13:03:23 +00:00
|
|
|
INSERT INTO `salix`.`ACL` (`model`, `property`, `accessType`, `permission`, `principalType`, `principalId`)
|
|
|
|
VALUES
|
|
|
|
('Ticket', 'editDiscount', 'WRITE', 'ALLOW', 'ROLE', 'claimManager'),
|
2023-04-19 11:59:26 +00:00
|
|
|
('Ticket', 'editDiscount', 'WRITE', 'ALLOW', 'ROLE', 'salesPerson'),
|
2023-04-25 12:17:36 +00:00
|
|
|
('Ticket', 'hasRoleAdvanced', '*', 'ALLOW', 'ROLE', 'salesAssistant'),
|
|
|
|
('Ticket', 'hasRoleAdvanced', '*', 'ALLOW', 'ROLE', 'deliveryBoss'),
|
|
|
|
('Ticket', 'hasRoleAdvanced', '*', 'ALLOW', 'ROLE', 'buyer'),
|
|
|
|
('Ticket', 'hasRoleAdvanced', '*', 'ALLOW', 'ROLE', 'claimManager'),
|
|
|
|
('Ticket', 'deleteTicketWithPartPrepared', 'WRITE', 'ALLOW', 'ROLE', 'salesAssistant'),
|
|
|
|
('Ticket', 'editZone', 'WRITE', 'ALLOW', 'ROLE', 'deliveryBoss'),
|
2023-04-25 07:15:05 +00:00
|
|
|
('State', 'editableStates', 'READ', 'ALLOW', 'ROLE', 'employee'),
|
|
|
|
('State', 'seeEditableStates', 'READ', 'ALLOW', 'ROLE', 'administrative'),
|
|
|
|
('State', 'seeEditableStates', 'READ', 'ALLOW', 'ROLE', 'production'),
|
|
|
|
('State', 'seeFilteredEditableStates', 'READ', 'ALLOW', 'ROLE', 'salesPerson'),
|
2023-04-25 12:17:36 +00:00
|
|
|
('State', 'isSomeEditable', 'READ', 'ALLOW', 'ROLE', 'salesPerson'),
|
|
|
|
('State', 'isAllEditable', 'READ', 'ALLOW', 'ROLE', 'production'),
|
|
|
|
('State', 'isAllEditable', 'READ', 'ALLOW', 'ROLE', 'administrative'),
|
2023-04-19 11:59:26 +00:00
|
|
|
('Agency', 'seeExpired', 'READ', 'ALLOW', 'ROLE', 'administrative'),
|
|
|
|
('Agency', 'seeExpired', 'READ', 'ALLOW', 'ROLE', 'productionBoss'),
|
|
|
|
('Claim', 'createAfterDeadline', 'WRITE', 'ALLOW', 'ROLE', 'claimManager'),
|
2023-04-19 13:23:32 +00:00
|
|
|
('Client', 'editAddressLogifloraAllowed', 'WRITE', 'ALLOW', 'ROLE', 'salesAssistant'),
|
2023-04-24 09:07:04 +00:00
|
|
|
('Client', 'editFiscalDataWithoutTaxDataCheck', 'WRITE', 'ALLOW', 'ROLE', 'salesAssistant'),
|
|
|
|
('Client', 'editVerifiedDataWithoutTaxDataCheck', 'WRITE', 'ALLOW', 'ROLE', 'salesAssistant'),
|
|
|
|
('Client', 'editCredit', 'WRITE', 'ALLOW', 'ROLE', 'financialBoss'),
|
|
|
|
('Client', 'isNotEditableCredit', 'WRITE', 'ALLOW', 'ROLE', 'financialBoss'),
|
|
|
|
('InvoiceOut', 'canCreatePdf', 'WRITE', 'ALLOW', 'ROLE', 'invoicing'),
|
2023-04-25 07:15:05 +00:00
|
|
|
('Supplier', 'editPayMethodCheck', 'WRITE', 'ALLOW', 'ROLE', 'financial'),
|
2023-04-25 12:17:36 +00:00
|
|
|
('Worker', 'isTeamBoss', 'WRITE', 'ALLOW', 'ROLE', 'teamBoss'),
|
|
|
|
('Worker', 'forceIsSubordinate', 'READ', 'ALLOW', 'ROLE', 'hr'),
|
|
|
|
('Claim', 'editState', 'WRITE', 'ALLOW', 'ROLE', 'claimManager'),
|
|
|
|
('Claim', 'filter', 'READ', 'ALLOW', 'ROLE', 'employee');
|
2023-04-24 09:07:04 +00:00
|
|
|
|
|
|
|
DELETE FROM `salix`.`ACL`
|
|
|
|
WHERE
|
|
|
|
model = 'Claim'
|
|
|
|
AND property = '*'
|
|
|
|
AND accessType = '*';
|
2023-04-25 07:15:05 +00:00
|
|
|
|
2023-04-25 12:17:36 +00:00
|
|
|
DELETE FROM `salix`.`ACL`
|
|
|
|
WHERE
|
|
|
|
model = 'Ticket'
|
|
|
|
AND property = '*'
|
|
|
|
AND accessType = '*';
|
|
|
|
|
2023-04-25 07:15:05 +00:00
|
|
|
DELETE FROM `salix`.`ACL`
|
|
|
|
WHERE
|
|
|
|
model = 'State'
|
|
|
|
AND property = '*'
|
|
|
|
AND accessType = 'READ';
|
2023-04-25 12:17:36 +00:00
|
|
|
|
|
|
|
DELETE FROM `salix`.`ACL`
|
|
|
|
WHERE
|
|
|
|
model = 'Worker'
|
|
|
|
AND property = '*'
|
|
|
|
AND accessType = 'READ';
|
|
|
|
|
|
|
|
INSERT INTO `salix`.`ACL` (`model`, `property`, `accessType`, `permission`, `principalType`, `principalId`)
|
|
|
|
VALUES
|
|
|
|
('State', 'find', 'READ', 'ALLOW', 'ROLE', 'employee'),
|
|
|
|
('State', 'findById', 'READ', 'ALLOW', 'ROLE', 'employee'),
|
|
|
|
('State', 'findOne', 'READ', 'ALLOW', 'ROLE', 'employee');
|