Openbravo Issue Tracking System - Openbravo ERP
View Issue Details
IDProjectCategoryView StatusDate SubmittedLast Update
0014011Openbravo ERPA. Platformpublic2010-07-20 16:322010-08-17 00:00
Reportershuehner 
Assigned Toshuehner 
PriorityurgentSeverityminorReproducibilityhave not tried
StatusclosedResolutionfixed 
PlatformOS5OS Version
Product Version 
Target VersionFixed in Version 
Merge Request Status
Review Assigned To
OBNetwork customerNo
Web browser
ModulesCore
Support ticket
Regression level
Regression date
Regression introduced in release
Regression introduced by commit
Triggers an Emergency PackNo
Summary0014011: org.openbravo.service.web.authentication module does not support AuthenticationManagers which directly set a role
DescriptionIn changeset a2a2c3bd075e in pi, the HttpSecureAppServlet was enhanced to allow an AuthenticationManager to not only return the userId, but also to directly specify a role which should be used (instaed of the default role of the user).

This web.authentication servlet (which adds AuthenticationManager usage to the REST-webservices) needs to be enhanced with the same change.

Steps To Reproduce
Proposed Solution
Additional Information
TagsNo tags attached.
Relationships
related to defect 0013813 closed mtaal Check if REST webservices should be integrated with the configurable AuthManagers 
related to feature request 0014079 new Triage Platform Base Check if obcontext-caching is needed/useful when using the REST-service, or provide other way to achieve some perf gain 
Attached Files
Issue History
Date ModifiedUsernameFieldChange
2010-07-20 16:32shuehnerNew Issue
2010-07-20 16:32shuehnerAssigned To => shuehner
2010-07-20 16:32shuehnerOBNetwork customer => No
2010-07-21 11:59shuehnerRelationship addedrelated to 0013813
2010-07-26 08:33alostaleStatusnew => scheduled
2010-07-26 08:33alostalefix_in_branch => pi
2010-07-28 17:02shuehnerRelationship addedrelated to 0014079
2010-07-28 17:56hgbotCheckin
2010-07-28 17:56hgbotNote Added: 0029650
2010-07-28 17:56hgbotStatusscheduled => resolved
2010-07-28 17:56hgbotResolutionopen => fixed
2010-07-28 17:56hgbotFixed in SCM revision => http://code.openbravo.com/erp/mods/org.openbravo.service.web.authentication/rev/d4d56d9ce62b666db4a3ed3fe8368f3d073aba27 [^]
2010-08-16 11:17mtaalNote Added: 0029999
2010-08-16 11:17mtaalStatusresolved => closed
2010-08-17 00:00anonymoussf_bug_id0 => 3046645

Notes
(0029650)
hgbot   
2010-07-28 17:56   
Repository: erp/mods/org.openbravo.service.web.authentication
Changeset: d4d56d9ce62b666db4a3ed3fe8368f3d073aba27
Author: Stefan Hühner <stefan.huehner <at> openbravo.com>
Date: Wed Jul 28 17:56:11 2010 +0200
URL: http://code.openbravo.com/erp/mods/org.openbravo.service.web.authentication/rev/d4d56d9ce62b666db4a3ed3fe8368f3d073aba27 [^]

Fixed 14011: Create context with correct role Id
- Disable OBContext-caching as cache key is only userID
- create new OBContext using userId,roleId as provided by AuthenticationManager
- Avoid deprecated dal admin mode api (update core dep to >=MP18 for that)
- update module version number

---
M src-db/database/sourcedata/AD_MODULE.xml
M src-db/database/sourcedata/AD_MODULE_DEPENDENCY.xml
M src/org/openbravo/service/web/authentication/WSServlet.java
---
(0029999)
mtaal   
2010-08-16 11:17   
Tested