Information about bug
Description
Current Behavior
When a user is granted access only to the Projects module (through Role Permissions/User Permissions), the Desk still displays other workspace icons such as:
• Sales
• Buying
• Accounts
• HR
• Other Workspaces
Although the user receives a permission error when trying to open these workspaces, the icons are still visible on the Desk.
This can confuse users because it appears they have access to these modules when they actually do not.
Expected Behavior
The Desk should display only the workspaces that the user has permission to access.
For example:
• User has permission only for Projects.
• The Desk should display only the Projects workspace.
• All other workspace icons should be hidden automatically.
Steps to Reproduce
- Create a user with limited roles.
- Grant access only to the Projects workspace/module.
- Login using that user.
- Open the Desk.
Actual Result
All workspace icons are visible, including modules the user cannot access.
When clicking those modules, a permission error is shown.
Expected Result
Only authorized workspaces should be displayed.
Users should not see workspace icons for modules they are not permitted to access.
Why This Should Be Fixed
• Improves user experience.
• Reduces confusion for end users.
• Makes the interface cleaner for users with limited permissions.
• Better aligns the Desk UI with the actual permission system.
• Enhances security by not exposing inaccessible modules in the navigation.
Environment
• ERPNext Version: (please fill in)
• Frappe Framework Version: (please fill in)
• Browser: Chrome
• OS: Ubuntu Server
Screenshot
The screenshot below shows a user who should only have access to Projects, but other workspace icons are still displayed.
Module
other
Version
erpnext: 16.23.1 (version-16)
frappe: 16.23.1 (version-16)
Installation method
None
Relevant log output / Stack trace / Full Error Message.
Information about bug
Description
Current Behavior
When a user is granted access only to the Projects module (through Role Permissions/User Permissions), the Desk still displays other workspace icons such as:
• Sales
• Buying
• Accounts
• HR
• Other Workspaces
Although the user receives a permission error when trying to open these workspaces, the icons are still visible on the Desk.
This can confuse users because it appears they have access to these modules when they actually do not.
Expected Behavior
The Desk should display only the workspaces that the user has permission to access.
For example:
• User has permission only for Projects.
• The Desk should display only the Projects workspace.
• All other workspace icons should be hidden automatically.
Steps to Reproduce
Actual Result
All workspace icons are visible, including modules the user cannot access.
When clicking those modules, a permission error is shown.
Expected Result
Only authorized workspaces should be displayed.
Users should not see workspace icons for modules they are not permitted to access.
Why This Should Be Fixed
• Improves user experience.
• Reduces confusion for end users.
• Makes the interface cleaner for users with limited permissions.
• Better aligns the Desk UI with the actual permission system.
• Enhances security by not exposing inaccessible modules in the navigation.
Environment
• ERPNext Version: (please fill in)
• Frappe Framework Version: (please fill in)
• Browser: Chrome
• OS: Ubuntu Server
Screenshot
The screenshot below shows a user who should only have access to Projects, but other workspace icons are still displayed.
Module
other
Version
erpnext: 16.23.1 (version-16)
frappe: 16.23.1 (version-16)
Installation method
None
Relevant log output / Stack trace / Full Error Message.