From ee73f1360e01af8203d07437e98d5f570b4e45c7 Mon Sep 17 00:00:00 2001
From: Monish Deb <monish.deb@jmaconsulting.biz>
Date: Fri, 4 Jun 2021 12:05:28 +0530
Subject: [PATCH] Add permissions for financial_item entity

---
 CRM/Core/Permission.php     |  2 ++
 Civi/Api4/FinancialItem.php | 14 ++++++++++++++
 2 files changed, 16 insertions(+)

diff --git a/CRM/Core/Permission.php b/CRM/Core/Permission.php
index 36b5579bf004..17bfc79e9c04 100644
--- a/CRM/Core/Permission.php
+++ b/CRM/Core/Permission.php
@@ -1136,6 +1136,8 @@ public static function getEntityActionPermissions() {
     ];
     $permissions['line_item'] = $permissions['contribution'];
 
+    $permissions['financial_item'] = $permissions['contribution'];
+
     // Payment permissions
     $permissions['payment'] = [
       'get' => [
diff --git a/Civi/Api4/FinancialItem.php b/Civi/Api4/FinancialItem.php
index 4cb10f5e6ba8..7f1c3966e93e 100644
--- a/Civi/Api4/FinancialItem.php
+++ b/Civi/Api4/FinancialItem.php
@@ -31,4 +31,18 @@
  */
 class FinancialItem extends Generic\DAOEntity {
 
+  /**
+   * @see \Civi\Api4\Generic\AbstractEntity::permissions()
+   * @return array
+   */
+  public static function permissions() {
+    $permissions = \CRM_Core_Permission::getEntityActionPermissions()['financial_item'] ?? [];
+
+    // Merge permissions for this entity with the defaults
+    return array_merge($permissions, [
+      'create' => [\CRM_Core_Permission::ALWAYS_DENY_PERMISSION],
+      'update' => [\CRM_Core_Permission::ALWAYS_DENY_PERMISSION],
+    ]);
+  }
+
 }