To test:
[1] Verify that item record creating and editing during the
acquisitions process continues to work.
[2] Verify that calling services/itemrecorddisplay.pl without
a valid user session fails.
[3] Verify that authentication is required for making a new
order from a suggestion, transferring an order, doing a
Z39.50 search from acquisitions, displaying the record
card view in the staff interface, and running the till
reconciliation report (/cgi-bin/koha/reports/stats.screen.pl)
Signed-off-by: Galen Charlton <gmc@esilibrary.com>
Signed-off-by: Jonathan Druart <jonathan.druart@biblibre.com>
Signed-off-by: Katrin Fischer <Katrin.Fischer.83@web.de>
Verified all changed scripts are not accessible witout a valid
user session, but are with one.
template_name => "acqui/newordersuggestion.tmpl",
type => "intranet",
query => $input,
- authnotrequired => 1,
flagsrequired => { acquisition => 'order_manage' },
}
);
template_name => "acqui/z3950_search.tmpl",
query => $input,
type => "intranet",
- authnotrequired => 1,
flagsrequired => { acquisition => 'order_manage' },
}
);
template_name => "reports/stats_screen.tmpl",
query => $input,
type => "intranet",
- authnotrequired => 1,
flagsrequired => { reports => '*' },
- debug => 1,
}
);
= get_template_and_user({template_name => "serials/serial-issues-full.tmpl",
query => $query,
type => "intranet",
- authnotrequired => 0,
flagsrequired => {serials => '*'},
- debug => 1,
});
# replace CR by <br> in librarian note
= get_template_and_user({template_name => "serials/serial-issues.tmpl",
query => $query,
type => "intranet",
- authnotrequired => 1,
- debug => 1,
+ flagsrequired => {serials => '*'},
});
# replace CR by <br> in librarian note
template_name => 'services/itemrecorddisplay.tmpl',
query => $input,
type => 'intranet',
- authnotrequired => 1,
+ flagsrequired => {acquisition => '*'},
} );
my $biblionumber = $input->param('biblionumber') || '';