[MDL-62291] Confusing Data Protection Officer role mapping setting - Moodle Tracker

XML

Word

Printable

Details

Type: Bug
Status: Closed
Priority: Minor
Resolution: Fixed
Affects Version/s: 3.5
Fix Version/s: 3.5
Component/s: Privacy
Labels:
- ci
- triaged

Affected Branches:
MOODLE_35_STABLE
Fixed Branches:
MOODLE_35_STABLE
Epic Link:
GDPR Subject Access Request System
Pull from Repository:
git://github.com/junpataleta/moodle.git
Pull Master Branch:
~~MDL-62291~~-master
Pull Master Diff URL:
https://github.com/junpataleta/moodle/compare/446d8483a3...MDL-62291-master

Testing Instructions:

Hide

Login as an admin
Go to "Site administration / Users / Define roles"

Create a Data Protection Officer role with the following settings:

Short name	dpo
Custom full name	Data Protection Officer
Role archetype	None
Context types where this role may be assigned	System
Capability	"moodle/site:configview" (Allow)
Capability	"tool/dataprivacy:managedatarequests" (Allow)

Save changes.
Edit the "Manager" role and add the "'tool/dataprivacy:managedatarequests'" capability
Save the changes.
Go back to "Site administration / Privacy and policies / Privacy settings"
Check the "Data Protection Officer role mapping" setting.
Confirm that it is rendered as a set of multi-select checkbox controls.
Confirm that the options are "Manager" and "Data Protection Officer".

Show

Login as an admin Go to " Site administration / Users / Define roles " Create a Data Protection Officer role with the following settings: Short name dpo Custom full name Data Protection Officer Role archetype None Context types where this role may be assigned System Capability "moodle/site:configview" (Allow) Capability "tool/dataprivacy:managedatarequests" (Allow) Save changes. Edit the " Manager " role and add the " 'tool/dataprivacy:managedatarequests' " capability Save the changes. Go back to " Site administration / Privacy and policies / Privacy settings " Check the " Data Protection Officer role mapping " setting. Confirm that it is rendered as a set of multi-select checkbox controls. Confirm that the options are " Manager " and " Data Protection Officer ".

Description

If you create a role with capability 'tool/dataprivacy:managedatarequests' then the name of the role appears in the Data Protection Officer role mapping box.

It's confusing because the default is 'None', yet the setting doesn't have an option 'None'.

It's also confusing because although it appears that the role with capability 'tool/dataprivacy:managedatarequests' is selected as Data Protection Officer role mapping, you actually have to click to select it and then save changes.

Attachments

- Sort By Name
- Sort By Date
- Ascending
- Descending
- Thumbnails
- List
- Download All

dpo role mapping setting.png
22 kB
02/May/18 7:12 AM
multi.png
28 kB
03/May/18 7:06 PM
screenshot-1.png
27 kB
04/May/18 1:24 AM
single.png
24 kB
03/May/18 7:06 PM
Step9 and Step10_MDL-62291.PNG
16 kB
08/May/18 6:15 PM

Issue Links

Discovered while testing

MDLQA-12276 CLONE - A user can request personal data on behalf of another user

Passed

Activity

People

Assignee:: Jun Pataleta

Reporter:: Helen Foster

Peer reviewer:: Mihail Geshoski

Integrator:: David Monllaó

Tester:: Anna Carissa Sadia

Participants:: Anna Carissa Sadia, CiBoT, David Monllaó, Helen Foster, Jun Pataleta, Mihail Geshoski

Component watchers:: Andrew Lyons, Adrian Greeve, David Woloszyn, Huong Nguyen, Jake Dallimore, Meirza, Michael Hawkins, Raquel Ortega, Safat Shahin, Stevani Andolo

Votes:: 0 Vote for this issue

Watchers:: 5 Start watching this issue

Dates

Created:: 02/May/18 7:11 AM

Updated:: 18/May/18 3:59 PM

Resolved:: 09/May/18 6:33 AM

Fix Release Date:: 17/May/18

Time Tracking

Estimated:

Remaining:

Logged:

30m