authorisations clients

DavidL

There is an inconsistency for authorisations:

I gave my client permission to modify the content of existing widgets (limited modification).

My customer has a shop that he can administer on his profile but on the "E-COMMERCE" menu in the demo he has access to the shop widget settings and therefore he can see the other widgets and add them.

My question is this due to the fact that it is a demo shop or is it an authorization error?

Thanks 

Aj_Cre8

I don't think you can lit specific widgets within permissions. They can either modify them or not. @Sheyla may be able to answer more on that, but I think if they can access them, they access all of them.

DavidL

Hi,

I don't want to enable certain widgets, by default I never allow my clients to use widgets.

Adding a store is not considered as a widget, so the link related to the store widgets should not be displayed.

I did a test, without giving permission to add and modify the widgets, the customer can use the link "store widget" to display all the widgets and even use them on their site.

This behavior is not normal since they are only allowed to make simple modifications.

Best regards

Thank you

community_manager

Hi @DavidL!

I've forwarded this thread to our support team so they can take a closer look.

DavidL

Hi @Sheyla

Thank you very much :)

Ofri_Baram

Hi David,

Ofri from Duda support here :-)

Thanks for bringing this issue to our attention. This does require some more investigation on our end. I will need to look into this further and I will send you all further updates directly in the dedicated support ticket.

community_manager

https://community.duda.co/discussion/comment/818#Comment_818

@Ofri_Baram thanks for jumping in!

@DavidL closing out this thread as this is now in the hands of our incredible support team :)