I’m configuring RTFM on RT 3.6.0pre1.
All my internal users are members of a group called Internal, and that group has global rights to queues.
I have a user that’s for an external customer login; let’s call it xyz. That user can be assigned rights, is NOT a member of Internal, and has SeeClass and ShowArticle rights to one of the RTFM classes. The user has no Global rights, either in RTFM or RT.
BUT the user can create RTFM articles in that class! Shouldn’t he need the CreateArticle right to do so?
I’m willing to believe I’ve done something dumb, but I checked all this twice (I think!). Is there a good way to diagnose rights issues like this?