User Permission

[mayank.srivastava@westtel]

I’m facing an issue in FusionPBX where users can see all CDR records and call recordings, even those not related to their extension.


I removed permissions like xml_cdr_all, xml_cdr_recording_download, etc., and enabled limit_cdr_view = true in Default Settings → xml_cdr, but it still doesn’t filter the records. Users (e.g., extension 6001) can view and play recordings of other users (like 2230, 2235).

What I need:​

• Each user should only see calls/recordings where their extension was involved.

Can anyone help with:​

1. Enforcing CDR/recording filtering per extension?
2. Correct group permissions or settings that work for this?
3. Any other config I’m missing?

Thanks in advance.

 

[pbxgeek]

Are you using FS PBX? You posted in the FS PBX subforum. If not, you need to post in the correct subforum.
In FS PBX, I can easily add this requirement. It'll probably take 15 minutes.

 

[whut]

I’m facing an issue in FusionPBX where users can see all CDR records and call recordings, even those not related to their extension.


I removed permissions like xml_cdr_all, xml_cdr_recording_download, etc., and enabled limit_cdr_view = true in Default Settings → xml_cdr, but it still doesn’t filter the records. Users (e.g., extension 6001) can view and play recordings of other users (like 2230, 2235).

What I need:​

• Each user should only see calls/recordings where their extension was involved.

Can anyone help with:​

1. Enforcing CDR/recording filtering per extension?
2. Correct group permissions or settings that work for this?
3. Any other config I’m missing?

Thanks in advance.

Fusionpbx already has this. It looks like you are assigning accounts to have super admin permissions group. Very not good. Assign the user group, assign the user to the appropriate extensions. Read any dcumentation you have access to.

 

[mayank.srivastava@westtel]

Sorry, I reposted in FusionPBX forum: https://www.pbxforums.com/threads/user-permission.8489/

 

[vuthy09]

as I remember, that is a member feature it is called user reseller. fusionpbx is a partial open source, it is not a fully open source as I think

 

[whut]

No. this has nothing to do with one of the few paid member feature. It is solely incorrectly setting user permissions and user extension associations.

 

[markjcrane]

User accounts are assigned to extensions on the extension edit page.

• A user in the user group by default can only see call detail records that are assigned only to their account.
• The admin group by default, can see all calls for a particular domain or tenant.
• The superadmin group by default, can see all calls for any domain

The permission that controls whether someone can see all call detail records for a particular domain is the following permission.

• xml_cdr_domain

The permission that controls whether a group can see call detail records across all domains is

• xml_cdr_all

You can change the permissions to work however you want on your system. However, it's a good idea not to assign a regular user the xml_cdr_domain or xml_cdr_all permissions.