0052851: Invalid Role error accesing to WebPOS with an User with no Backend access

Anonymous | Login

Project:

News | My View | View Issues | Roadmap | Summary

View Revisions: Issue #52851		[ All Revisions ] [ Back to Issue ]
Summary	0052851: Invalid Role error accesing to WebPOS with an User with no Backend access

Revision	2023-07-06 18:03 by jarmendariz
Description	An User with a single active Role with restricted backend access should not be able to Log in into the backend but it should be able to access other applications such as the WebPOS. However, when attempting to log in into WebPOS the request returns the following error: "No valid Role identified. Please contact your system administrator for access"

Revision	2023-06-26 16:15 by jarmendariz
Description	When user has two roles configured, let only one role active (which has the flag Restricted Backend checked at Role Window) and another role is inactive in User Role tab(which has the flag Restricted Backend unchecked at Role Window) and try to login at POS and Backoffice then the error shown as Invalid Role No valid Role identified. Please contact your system administrator for access. LoginHandler.java at checkLicenseAndGo method it checks restricted role here boolean hasNonRestrictedRole = false; User user = OBDal.getInstance().get(User.class, strUserAuth); for (UserRoles userrole : user.getADUserRolesList()) { if (!userrole.getRole().isRestrictbackend()) { hasNonRestrictedRole = true; break; } } if (!hasNonRestrictedRole) { String msg = Utility.messageBD(cp, "NON_RESTRICTED_ROLE", vars.getLanguage()); String title = Utility.messageBD(cp, "NON_RESTRICTED_ROLE_TITLE", vars.getLanguage()); updateDBSession(sessionId, false, "RESTR"); goToRetry(res, vars, msg, title, "Error", action); return; } at getLoginDefaults method isrestrictbackend condition checked in query and it fails strSql = strSql + " SELECT users.DEFAULT_AD_ROLE_ID" + " FROM AD_USER users" + " INNER JOIN AD_ROLE role ON users.DEFAULT_AD_ROLE_ID = role.AD_ROLE_ID" + " WHERE users.AD_USER_ID = ?" + " AND NOT users.DEFAULT_AD_ROLE_ID IS NULL" + " AND role.ISACTIVE = 'Y' and role.isrestrictbackend='N'";