0052851: Invalid Role error accesing to WebPOS with an User with no Backend access

Anonymous | Login

Project:

News | My View | View Issues | Roadmap | Summary

View Revisions: Issue #52851		[ Back to Issue ]
Summary	0052851: Invalid Role error accesing to WebPOS with an User with no Backend access

Revision	2023-07-06 18:03 by jarmendariz
Steps To Reproduce	In Backend - Login with Openbravo user - Switch to "The White Valley Group Admin" role - Go to User Window - Select 'vallblanca' user - In User Roles subtab: - Unset the Active flag to "VallblancaManual" - Edit "VallblancaUser" entry - Go to "VallBlancaUser" Role Window - Check "Restrict backend access" and save In WebPOS - Attempt to login with user 'vallblanca' It should login normally as this user has the Role 'VallBlancaUser' and is valid, however it will show the "No Valid Role identified" error. Notice that if you uncheck the "Restrict backend access" flag to "VallBlancaUser" Role and save, now you should be able to login into WebPOS.

Revision	2023-07-06 18:03 by jarmendariz
Description	An User with a single active Role with restricted backend access should not be able to Log in into the backend but it should be able to access other applications such as the WebPOS. However, when attempting to log in into WebPOS the request returns the following error: "No valid Role identified. Please contact your system administrator for access"

Revision	2023-06-26 16:15 by jarmendariz
Steps To Reproduce	1. Create an User in User window 2. Add a role under User and check the flag 'Restrict backend access' in Role Window. 3. Add another role under User and uncheck the flag 'Restrict backend access' in Role Window. 4. Add Default Role and Default POS Role in header of the User window. 5. Now to try to login in backoffice or POS. Error raised as Invalid Role No valid Role identified. Please contact your system administrator for access.

Revision	2023-06-26 16:15 by jarmendariz
Description	When user has two roles configured, let only one role active (which has the flag Restricted Backend checked at Role Window) and another role is inactive in User Role tab(which has the flag Restricted Backend unchecked at Role Window) and try to login at POS and Backoffice then the error shown as Invalid Role No valid Role identified. Please contact your system administrator for access. LoginHandler.java at checkLicenseAndGo method it checks restricted role here boolean hasNonRestrictedRole = false; User user = OBDal.getInstance().get(User.class, strUserAuth); for (UserRoles userrole : user.getADUserRolesList()) { if (!userrole.getRole().isRestrictbackend()) { hasNonRestrictedRole = true; break; } } if (!hasNonRestrictedRole) { String msg = Utility.messageBD(cp, "NON_RESTRICTED_ROLE", vars.getLanguage()); String title = Utility.messageBD(cp, "NON_RESTRICTED_ROLE_TITLE", vars.getLanguage()); updateDBSession(sessionId, false, "RESTR"); goToRetry(res, vars, msg, title, "Error", action); return; } at getLoginDefaults method isrestrictbackend condition checked in query and it fails strSql = strSql + " SELECT users.DEFAULT_AD_ROLE_ID" + " FROM AD_USER users" + " INNER JOIN AD_ROLE role ON users.DEFAULT_AD_ROLE_ID = role.AD_ROLE_ID" + " WHERE users.AD_USER_ID = ?" + " AND NOT users.DEFAULT_AD_ROLE_ID IS NULL" + " AND role.ISACTIVE = 'Y' and role.isrestrictbackend='N'";