Skip to content
Idea Exchange
← ILS - Polaris

How can we improve Polaris?

ILS - Polaris: Cataloging & Metadata Management

Categories

JUMP TO ANOTHER FORUM

(thinking…)

Recently Activity

ILS - Polaris Updated

Collapse Name on Identification Fields

Customer Relationship & Account Management UNDER REVIEW

ILS - Polaris Updated

Enhanced Patron Privacy (UDF)

Customer Relationship & Account Management UNDER REVIEW

ILS - Polaris Updated

Staff's ability to make item bulk changes should follow permissions for item record change

Cataloging & Metadata Management UNDER REVIEW

ILS - Polaris Updated

Search Item Records in Leap using Last Activity Date

Circulation, Access Services & Fulfillment UNDER REVIEW

ILS - Polaris Updated

Add notes field to Polaris Staff Accounts

System Administration (incl APIs) UNDER REVIEW

ILS - Polaris Updated

Allow PolarisAdmin sidebar to be pinned

System Administration (incl APIs) UNDER REVIEW

ILS - Polaris Updated

Allow the option to use OAuth to authenticate SMTP

System Administration (incl APIs) UNDER REVIEW

Don't see your product?

Visit the ExLibris Idea Exchange

Including Alma, Primo, Summon and more

Visit the ProQuest Idea Exchange

Including Ebook Central, PQ Dissertations and Theses and more

Staff's ability to make item bulk changes should follow permissions for item record change

Currently item bulk change functionality allows staff to bulk change fields that they can't change in individual item records. This allows staff to modify item records using bulk change when they're blocked from modifying directly in the item record. The same permissions should apply to bulk change:

• Item records: Modify cataloging view
• Item records: Modify source and acquisitions view
• Item records: Modify reserves view
• Item records: Modify history view

The library feels this is a data security risk. Fundamentally, here is the question: what is the purpose of the permission Item records: Modify cataloging view?

If the purpose is data security, to protect certain data from accidental or purposeful editing by individuals whose job does not require write permissions to the data protected by that permission, then why are these individuals allowed to do that editing in a bulk interface?

5 votes

We're glad you're here

Please sign in to leave feedback
Signed in as (Sign out)
Close
Close

We’ll send you updates on this idea

Amy Emery shared this idea  ·   ·  Report…  ·  Admin →
How important is this to you?

We're glad you're here

Please sign in to leave feedback
Signed in as (Sign out)
Close
Close

We're glad you're here

Please sign in to leave feedback
Signed in as (Sign out)
Close
Close
Submitting...
An error occurred while saving the comment
  • Carmi Parker commented  ·   ·  Report

    My library discovered this issue because circulation staff mistakenly bulk edited several cataloging fields, that, per our permissions schema, only catalogers can edit. In further testing, I found that bulk edit allows circ staff to edit or delete any field, including mission critical ones that only our catalogers should touch, like call number, loan period, etc. The proposed workaround is to not let circ staff use bulk edit, a feature they currently use on hundreds of items per day when they are weeding, shifting books by branch location, shifting books to different shelf locations, and other tasks. So, the workaround doesn't work for us.

  • Amy Mihelich commented  ·   ·  Report

    We run into this when having to correct mistaken bulk changes. A staff member is bulk changing item records and accidentally changes a field that they didn't mean to (such as assigned branch) and then is unable to correct the item records and has to request support. It would be a work and time-saver if there were a failsafe to prevent this.