If any user don't have permision of clinical module and somehow that person get the url's which is executing in clinical module then that user can access that url and perform any related action. this is happening in my install.
For example:- I logged-In with nurse user that user have only InPatient app previllage and then I paste below url in logged-In session browser,
https://<DOMAIN>/bahmni/clinical/index.html#/default/patient/<PATIENT UUID>/dashboard/disposition
Now for "nurse user" i don't have access to the disposition of any patient but here i can do, it is showing some UI error but still saving the actions.
please answer my query your suggestion would be greatly appreciated.
Could you explain what this has to do with an Altassian application?
Actually this question is for bahmni EMR open source software community, which is available on Below url,
https://bahmni.atlassian.net. I think I posted this question in wrong place.
Sorry for inconvenience.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Yes, you did.
It's understandable, and an easy mistake to make.
Bahmni is using the Atlassian stack to provide their docs and/or issue tracking, and you've clicked on the help links for the application they're using for that, rather than the help for their products.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.