Description
Background information
Hello.
First and foremost I thank the maintainers for keeping such an impactful project active.
I noticed one is able to impersonate an employee when adding a new expense or editing a receiving or expense record. This goes against system integrity where we would like to track responsible individuals performing specific actions.
If the selection input can be removed and insted the value for the input picked from details of the currently logged in user it will make more sense. See the screenshots below:
Once again, thank you.
IMPORTANT: If you choose to ignore this issue report template, your issue will be closed as we cannot help without the requested information.
Please make sure you tick (add an x between the square brackets with no spaces) the following check boxes:
- Reporting an issue of an unmodified OSPOS installation
- Checked open and closed issues and no similar issue was already reported (please make sure you searched!)
- Read README, WHATS_NEW, INSTALL.md and UPGRADE
- Read the FAQ for any known install and/or upgrade gotchas (in specific PHP extensions installed)
- Read the wiki
- Executed any database upgrade scripts if an upgrade pre 3.0.0 (e.g. database/2.4_to_3.0.sql)
- Aware the installation code that GitHub master is for developers only and therefore not complete nor stable.
Installation information
- OSPOS version is: 3.3.8 - ffe492
- OSPOS git commit hash is: ffe4927
- PHP version is: 7.4.30
- MySQL or MariaDB version is: 5.5.5-10.5.18-MariaDB-1:10.5.18+maria~ubu2004
- OS and version is: Fedora 37
- WebServer is: default apache included on docker-compose stack
- Selected language is: en-US
- (If applicable) Docker installation: yes docker-compose.yml stack
- (If applicable) Installation package for the LAMP/LEMP stack is:
Issue / Bug / Question / New Feature
Please write your issue here. If a bug, please make sure to provide as much information as possible including configuration settings (e.g. Decimals set, Tax mode), language and steps to reproduce the bug.