Openbravo Issue Tracking System - Openbravo ERP |
| View Issue Details |
|
| ID | Project | Category | View Status | Date Submitted | Last Update |
| 0022644 | Openbravo ERP | A. Platform | public | 2012-12-20 13:24 | 2013-01-31 13:21 |
|
| Reporter | marvintm | |
| Assigned To | marvintm | |
| Priority | normal | Severity | minor | Reproducibility | have not tried |
| Status | closed | Resolution | fixed | |
| Platform | | OS | 5 | OS Version | |
| Product Version | | |
| Target Version | | Fixed in Version | 3.0MP20 | |
| Merge Request Status | |
| Review Assigned To | AugustoMauch |
| OBNetwork customer | |
| Web browser | |
| Modules | Core |
| Support ticket | |
| Regression level | |
| Regression date | |
| Regression introduced in release | |
| Regression introduced by commit | |
| Triggers an Emergency Pack | No |
|
| Summary | 0022644: It would be convenient to be able to restrict a role from accessing the backend |
| Description | Besides the ERP, Openbravo has a platform which can be used to develop other applications. Currently, the Web POS is a different application which can be used on Openbravo.
It would be very convenient to have an option to restrict a role from accessing the backend. This option would enable the user to access other applications, but not the backend. |
| Steps To Reproduce | . |
| Proposed Solution | |
| Additional Information | |
| Tags | No tags attached. |
| Relationships | |
| Attached Files |  restrictrole.diff (24,125) 2013-01-09 16:14
https://issues.openbravo.com/file_download.php?file_id=5876&type=bug |
|
| Issue History |
| Date Modified | Username | Field | Change |
| 2012-12-20 13:24 | marvintm | New Issue | |
| 2012-12-20 13:24 | marvintm | Assigned To | => marvintm |
| 2012-12-20 13:24 | marvintm | Modules | => Core |
| 2012-12-20 13:24 | marvintm | Triggers an Emergency Pack | => No |
| 2012-12-20 13:28 | hgbot | Checkin | |
| 2012-12-20 13:28 | hgbot | Note Added: 0055115 | |
| 2012-12-20 13:28 | hgbot | Status | new => resolved |
| 2012-12-20 13:28 | hgbot | Resolution | open => fixed |
| 2012-12-20 13:28 | hgbot | Fixed in SCM revision | => http://code.openbravo.com/erp/devel/pi/rev/a6b455bb80fc2972d7f09519d2ba3251d945d750 [^] |
| 2012-12-20 13:30 | hgbot | Checkin | |
| 2012-12-20 13:30 | hgbot | Note Added: 0055116 | |
| 2012-12-20 19:10 | hgbot | Checkin | |
| 2012-12-20 19:10 | hgbot | Note Added: 0055138 | |
| 2012-12-26 15:42 | hudsonbot | Checkin | |
| 2012-12-26 15:42 | hudsonbot | Note Added: 0055206 | |
| 2012-12-26 15:43 | hudsonbot | Checkin | |
| 2012-12-26 15:43 | hudsonbot | Note Added: 0055208 | |
| 2012-12-27 13:17 | AugustoMauch | Note Added: 0055242 | |
| 2012-12-27 13:17 | AugustoMauch | Status | resolved => new |
| 2012-12-27 13:17 | AugustoMauch | Resolution | fixed => open |
| 2013-01-09 16:14 | marvintm | File Added: restrictrole.diff | |
| 2013-01-09 16:14 | marvintm | Note Added: 0055421 | |
| 2013-01-21 09:50 | hgbot | Checkin | |
| 2013-01-21 09:50 | hgbot | Note Added: 0055652 | |
| 2013-01-21 09:50 | hgbot | Status | new => resolved |
| 2013-01-21 09:50 | hgbot | Resolution | open => fixed |
| 2013-01-21 09:50 | hgbot | Fixed in SCM revision | http://code.openbravo.com/erp/devel/pi/rev/a6b455bb80fc2972d7f09519d2ba3251d945d750 [^] => http://code.openbravo.com/erp/devel/pi/rev/e5c99a21da3eee59c77303b801247a322c50a593 [^] |
| 2013-01-21 11:45 | hgbot | Checkin | |
| 2013-01-21 11:45 | hgbot | Note Added: 0055662 | |
| 2013-01-22 09:34 | AugustoMauch | Review Assigned To | => AugustoMauch |
| 2013-01-22 15:33 | hudsonbot | Checkin | |
| 2013-01-22 15:33 | hudsonbot | Note Added: 0055731 | |
| 2013-01-22 15:33 | hudsonbot | Checkin | |
| 2013-01-22 15:33 | hudsonbot | Note Added: 0055733 | |
| 2013-01-31 13:21 | AugustoMauch | Note Added: 0056007 | |
| 2013-01-31 13:21 | AugustoMauch | Status | resolved => closed |
| 2013-01-31 13:21 | AugustoMauch | Fixed in Version | => 3.0MP20 |
|
Notes |
|
|
(0055115)
|
|
hgbot
|
|
2012-12-20 13:28
|
|
Repository: erp/devel/pi
Changeset: a6b455bb80fc2972d7f09519d2ba3251d945d750
Author: Antonio Moreno <antonio.moreno <at> openbravo.com>
Date: Thu Dec 20 13:27:34 2012 +0100
URL: http://code.openbravo.com/erp/devel/pi/rev/a6b455bb80fc2972d7f09519d2ba3251d945d750 [^]
Fixed issue 22644. Now a role can be restricted from accessing the backend.
- A new check has been added to the role window. If this check is set, then the role cannot be used to log in the backend, but can be used to log in other applications (such as the WebPOS), if this restriction is overwritten in the corresponding login handler.
---
M modules/org.openbravo.client.application/src/org/openbravo/client/application/navigationbarcomponents/UserInfoWidgetActionHandler.java
M src-db/database/model/tables/AD_ROLE.xml
M src-db/database/sourcedata/AD_COLUMN.xml
M src-db/database/sourcedata/AD_ELEMENT.xml
M src-db/database/sourcedata/AD_FIELD.xml
M src-db/database/sourcedata/AD_MESSAGE.xml
M src-db/database/sourcedata/AD_REF_LIST.xml
M src/org/openbravo/base/secureApp/DefaultOptions_data.xsql
M src/org/openbravo/base/secureApp/LoginHandler.java
---
|
|
|
|
(0055116)
|
|
hgbot
|
|
2012-12-20 13:30
|
|
|
|
|
(0055138)
|
|
hgbot
|
|
2012-12-20 19:10
|
|
Repository: erp/devel/pi
Changeset: e0cdc20e50b894563357b92d85ea6f4b2ebb6c00
Author: Antonio Moreno <antonio.moreno <at> openbravo.com>
Date: Thu Dec 20 19:10:12 2012 +0100
URL: http://code.openbravo.com/erp/devel/pi/rev/e0cdc20e50b894563357b92d85ea6f4b2ebb6c00 [^]
Related to issue 22644. Rolled back changes. Will be done in a different way
---
M modules/org.openbravo.client.application/src/org/openbravo/client/application/navigationbarcomponents/UserInfoWidgetActionHandler.java
M src-db/database/model/tables/AD_ROLE.xml
M src-db/database/sourcedata/AD_COLUMN.xml
M src-db/database/sourcedata/AD_ELEMENT.xml
M src-db/database/sourcedata/AD_FIELD.xml
M src-db/database/sourcedata/AD_MESSAGE.xml
M src-db/database/sourcedata/AD_REF_LIST.xml
M src/org/openbravo/base/secureApp/DefaultOptions_data.xsql
M src/org/openbravo/base/secureApp/LoginHandler.java
---
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Reopened because its fix was rolled back |
|
|
|
|
|
A file with a fix has been added. The patch will be committed once the MP20 release cycle starts. |
|
|
|
(0055652)
|
|
hgbot
|
|
2013-01-21 09:50
|
|
Repository: erp/devel/pi
Changeset: e5c99a21da3eee59c77303b801247a322c50a593
Author: Antonio Moreno <antonio.moreno <at> openbravo.com>
Date: Mon Jan 21 09:48:39 2013 +0100
URL: http://code.openbravo.com/erp/devel/pi/rev/e5c99a21da3eee59c77303b801247a322c50a593 [^]
Fixed issue 22644. Now a role can be restricted from accessing the backend.
> - A new check has been added to the role table. If this check is set, the role will not have access to the backend.
> - Regardless of the value of this check, a role will be able to access other applications (such as the WebPOS), provided that it has access to the corresponding window.
> - If a user attempts to log in Openbravo, all its roles will be checked. If all the roles are restricted, the user will not be able to login. If the default role is restricted but others are available, the user will log in one of them.
> - If a user is already logged with a restricted user (for example, in the WebPOS), and attempts to open the backend, an error will be shown.
---
M modules/org.openbravo.client.application/src-db/database/sourcedata/AD_MESSAGE.xml
M modules/org.openbravo.client.application/src/org/openbravo/client/application/navigationbarcomponents/UserInfoWidgetActionHandler.java
M referencedata/sampledata/F_B_International_Group.xml
M referencedata/sampledata/QA_Testing.xml
M src-db/database/model/tables/AD_ROLE.xml
M src-db/database/sourcedata/AD_COLUMN.xml
M src-db/database/sourcedata/AD_ELEMENT.xml
M src-db/database/sourcedata/AD_FIELD.xml
M src-db/database/sourcedata/AD_MESSAGE.xml
M src-db/database/sourcedata/AD_REF_LIST.xml
M src/index.jsp
M src/org/openbravo/base/secureApp/DefaultOptions_data.xsql
M src/org/openbravo/base/secureApp/LoginHandler.java
---
|
|
|
|
(0055662)
|
|
hgbot
|
|
2013-01-21 11:45
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Code reviewed and verified in pi@a7dea24ffd6d |
|