refs #5666 feat: change models permissions

back/model-config.json

@@ -139,12 +139,6 @@
     "Warehouse": {
         "dataSource": "vn"
     },
-    "VnUser": {
-        "dataSource": "vn"
-    },
-    "VnRole": {
-        "dataSource": "vn"
-    },
     "OsTicket": {
         "dataSource": "osticket"
     },
@@ -159,6 +153,12 @@
     },
     "ViaexpressConfig": {
         "dataSource": "vn"
+    },
+    "VnUser": {
+        "dataSource": "vn"
+    },
+    "VnRole": {
+        "dataSource": "vn"
     }
 }
 

db/changes/235001/00-updateACL_Role_VnRole.sql

@@ -1,8 +1,12 @@
 --  Auto-generated SQL script #202311301038
-INSERT INTO `salix`.`ACL` (model,property,accessType,permission,principalType,principalId)
-	VALUES ('VnRole','*','*','ALLOW','ROLE','$everyone');
-INSERT INTO `salix`.`ACL` (model,property,accessType,permission,principalType,principalId)
-	VALUES ('VnRole','*','*','ALLOW','ROLE','employee');
+-- INSERT INTO `salix`.`ACL` (model,property,accessType,permission,principalType,principalId)
+-- 	VALUES ('VnRole','*','*','ALLOW','ROLE','$everyone');
+-- INSERT INTO `salix`.`ACL` (model,property,accessType,permission,principalType,principalId)
+-- 	VALUES ('VnRole','*','*','ALLOW','ROLE','employee');
+INSERT INTO salix.ACL (model,property,accessType,permission,principalType,principalId) VALUES
+	 ('VnRole','*','READ','ALLOW','ROLE','employee'),
+	 ('VnRole','*','WRITE','ALLOW','ROLE','it');
 
 --  Auto-generated SQL script #202311301203
-UPDATE `salix`.`ACL` SET permission='DENY' WHERE model='Role';
+DELETE FROM`salix`.`ACL`  WHERE model='Role';
+

loopback/server/model-config.json

@@ -25,14 +25,6 @@
     "FieldAcl": {
         "dataSource": "vn"
     },
-    "Role": {
-        "dataSource": "vn",
-        "options": {
-            "mysql": {
-                "table": "salix.Role"
-            }
-        }
-    },
     "RoleMapping": {
         "dataSource": "vn",
         "options": {