Bug 809 - Admin is able to access restricted function
Summary: Admin is able to access restricted function
Status: RESOLVED FIXED
Alias: None
Product: 2023 CS3343 Group 20 System
Classification: Unclassified
Component: Admin (show other bugs)
Version: unspecified
Hardware: PC Windows
: --- normal
Assignee: chlam368-c
URL:
Depends on:
Blocks:
 
Reported: 2023-12-06 21:10 HKT by mhlee64-c
Modified: 2023-12-09 13:59 HKT (History)
1 user (show)

See Also:

Attachments
Test case for admin access right bug (40.02 KB, image/png)
2023-12-06 21:10 HKT, mhlee64-c 		Details
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description mhlee64-c 2023-12-06 21:10:37 HKT 
Created attachment 158 [details]
Test case for admin access right bug

Admin role in the system should only have access to create user and change account password, but it unexpectedly can access function like create medicine and view medicine.
--------------------------------------------------------------------------------
Welcome to CMS!
============================================== Login ===============================================
Please enter your staff ID: @
Please enter your password: @
============================================ Main Menu =============================================
Login as [Admin] Admin | @ | 
0.	Patient Mangement
1.	Appointment Management
2.	MedRecord Management
3.	Medicine Management
4.	Admin
5.	Logoff
Please select a function: 3
======================================= Medicine Management ========================================
0.	View Medicine
1.	Create Medicine
2.	Edit Medicine
Please select a function: 1
========================================= Create Medicine ==========================================
Please enter the medicine name: TestMed
Please enter the cost: $100
Please enter the unit: 2mg
Please enter the stock: 3
Medinine created successfully.
============================================ Main Menu =============================================
Login as [Admin] Admin | @ | 
0.	Patient Mangement
1.	Appointment Management
2.	MedRecord Management
3.	Medicine Management
4.	Admin
5.	Logoff
Please select a function: 3
======================================= Medicine Management ========================================
0.	View Medicine
1.	Create Medicine
2.	Edit Medicine
Please select a function: 0
========================================== View Medicine ===========================================
0.	[Medicine] m1 | $:100.0/tab | Stock: 2
1.	[Medicine] m2 | $:100.0/10mg | Stock: 2
2.	[Medicine] TestMed | $:100.0/2mg | Stock: 3