Modification to Bugzilla

David Miller justdave at syndicomm.com
Fri Jul 18 16:40:42 UTC 2003


On 7/18/2003 5:07 PM +0100, Mark Ingram wrote:

> Some of these changes require editing of the CGI.pl and other generic files.
> Examples of these are:
>
> Not allowing unregistered or non-logged in users to view the buglist or
> reports.
> Not allowing anyone to create a new account accept the administrator.
> Only allowing a user to belong to one user group at a time.

Bugzilla 2.17.x already does the first two of these three.  Look for
"requirelogin" and "createemailregexp" in the params.

The third requires quite a bit of hacking (I've already done that for
Zippy's Bugzilla because they wanted that, too), but it can be done.
editusers is the main place you have to touch (so that editing a user
enforces it).  You also have to make sure editusers make a really clear
distinction between permission groups and bug/role groups.  Forcing a
person to only be in one permission group would put a serious kink in their
capabilities while using the system. :-)  The group inheritance stuff in
2.17.1 and up made this really easy because we could create a top-level set
of groups that would be the ones chosen from the editusers interface by the
admin, and lower-level groups to define the users permissions which were
inherited by the choice made by the admin.

-- 
Dave Miller      Project Leader, Bugzilla Bug Tracking System
http://www.justdave.net/             http://www.bugzilla.org/



More information about the developers mailing list