0054685: Do not persist access fo widget classes having Allow Anonymous Access

Openbravo Issue Tracking System - Openbravo ERP

View Issue Details

Project

Category

View Status

Date Submitted

Last Update

0054685

Openbravo ERP

A. Platform

public

2024-02-15 13:34

2024-02-15 13:41

Reporter

shuehner

Assigned To

shuehner

Priority

normal

Severity

minor

Reproducibility

have not tried

Status

new

Resolution

open

Platform

OS Version

Product Version

Target Version

Fixed in Version

Merge Request Status

open

Review Assigned To

OBNetwork customer

Web browser

Modules

Core

Support ticket

Regression level

Regression date

Regression introduced in release

Regression introduced by commit

Triggers an Emergency Pack

Summary

0054685: Do not persist access fo widget classes having Allow Anonymous Access

Description

Issue 53408 in 24Q1 release stopped persisting _ACCESS entries for role marked as automatic. Instead that case is handled in code automatically.

Table obkmo_widget_class has a similar flag to mark a widget as available independent of role (allow_anonymous_access).

Similar to 53408 we can remove that auto-generated _access entries as those widget classes will be allowed automatically

Steps To Reproduce

See code checking obkmo_widget_class_access for access control here:
https://gitlab.com/openbravo/product/openbravo/-/blob/master/modules/org.openbravo.client.myob/src/org/openbravo/client/myob/MyOpenbravoComponent.java?ref_type=heads#L176 [^]

Starting line 185 all those classes marked as allow_anonymous_access are added as available independent of the roles being manual or automatic.

Proposed Solution

Remove the _access rows for public widget_classes and persist those changes into sampledata.

delete from obkmo_widget_class_access a where exists (select 1 from obkmo_widget_class c where c.obkmo_widget_class_id = a.obkmo_widget_class_id and c.allow_anonymous_access = 'Y');

Additional Information