When you land on checkout/xxx/complete, you get a message

Your order is number 4791. You can view your order on your account page when logged in.

The link is something like /user/9/orders/4791

However, the "view own orders of any type" is not enabled by default, at least using Commerce Kickstart. Perhaps this is a commerce kickstart issue, but it may be that that link should be more intelligent anyway.

Comments

j0rd’s picture

j0rd commented

I had same bug in my non-commerce kickstart install.

I had enabled "Edit own Order orders" which I believed should be enough to view ones own orders, but I was getting permission denied.

After I enabled "view own orders of any type" I was able to view the order.

I would think this permission issue is some kind of bug.

rszrama’s picture

rszrama commented
Status: Active » Fixed

As far as I know, other entities maintain a strict separation of permissions, such that edit permission wouldn't additionally grant you view permission. I won't be changing the way ours work to allow this, however I did update Commerce Kickstart one or two releases ago to set the permission on install. At least for Kickstart installation you should no longer have this issue, and everyone else will just have to remember to set this permission (along with permissions like access checkout). It's par for the course for a custom installation, and we can make sure to document it.

Status: Fixed » Closed (fixed)

Automatically closed -- issue fixed for 2 weeks with no activity.

rfay’s picture

rfay
he,him
Primary language English
Location Palisade, CO, USA
commented

Note that this has in fact been fixed: The anon user by default has "View own orders of any type" permission, and it works really well.

rszrama sez: "by default that permission will do nothing for anonymous users, but the Cart module plugs into the access query to grant access to orders referenced by that anonymous user's session"