https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=28948
--- Comment #22 from Marcel de Rooy <m.de.r...@rijksmuseum.nl> --- I elaborated on the changes of Martin, but note the following: - # Remove forbidden attributes if required - if ( $params->{public} - and $self->can('api_privileged_attrs') ) - { - foreach my $privileged_attr ( @{ $self->api_privileged_attrs } ) { - delete $json_object->{$privileged_attr}; - } - } Initially we only filtered the public side removing the api privileged keys. What we now do, is filter both public and staff ! Which is a serious difference obviously. -- You are receiving this mail because: You are watching all bug changes. _______________________________________________ Koha-bugs mailing list Koha-bugs@lists.koha-community.org https://lists.koha-community.org/cgi-bin/mailman/listinfo/koha-bugs website : http://www.koha-community.org/ git : http://git.koha-community.org/ bugs : http://bugs.koha-community.org/