Openbravo Issue Tracking System - Retail Modules |
View Issue Details |
|
ID | Project | Category | View Status | Date Submitted | Last Update |
0055308 | Retail Modules | Web POS | public | 2024-04-24 17:41 | 2024-04-25 12:37 |
|
Reporter | eugen_hamuraru | |
Assigned To | eugen_hamuraru | |
Priority | normal | Severity | major | Reproducibility | have not tried |
Status | closed | Resolution | fixed | |
Platform | | OS | 5 | OS Version | |
Product Version | | |
Target Version | | Fixed in Version | RR24Q3 | |
Merge Request Status | |
Review Assigned To | |
OBNetwork customer | |
Support ticket | |
Regression level | |
Regression date | |
Regression introduced in release | |
Regression introduced by commit | |
Triggers an Emergency Pack | No |
|
Summary | 0055308: Cannot use Stock API external service with OAuth authentication by a manual role |
Description | The Stock API external service is configured using backend as a proxy and OAuth2 authentication.
when the POS is used with a manual role with limited access to backend window the stock API fails |
Steps To Reproduce | 1. Configure Stock API to authenticate with OAuth
2. Log in with a manual role with standard access
3. Use stock API
ERROR: 2024-04-24 10:00:59,028 [http-nio-127.0.0.1-8080-exec-16] ERROR org.openbravo.mobile.core.process.JSONRowConverter - Error in JSON process: Entity C_External_System is not readable by the user CC7F8ECF2668464796316909D81392C8
org.openbravo.base.exception.OBSecurityException: Entity C_External_System is not readable by the user CC7F8ECF2668464796316909D81392C8
at org.openbravo.dal.security.EntityAccessChecker.checkReadable(EntityAccessChecker.java:640) ~[classes/:?]
at org.openbravo.dal.service.OBDal.checkReadAccess(OBDal.java:749) ~[classes/:?]
at org.openbravo.dal.service.OBDal.checkReadAccess(OBDal.java:736) ~[classes/:?]
at org.openbravo.dal.service.OBDal.createCriteria(OBDal.java:572) ~[classes/:?]
at org.openbravo.mobile.core.externalsystem.HttpAuthorizationService.checkIsReadable(HttpAuthorizationService.java:55) ~[classes/:?]
at org.openbravo.mobile.core.externalsystem.HttpAuthorizationService.exec(HttpAuthorizationService.java:47) ~[classes/:?]
at org.openbravo.mobile.core.process.JSONProcessSimple.exec(JSONProcessSimple.java:47) ~[classes/:?] |
Proposed Solution | |
Additional Information | |
Tags | No tags attached. |
Relationships | depends on | backport | 0055309 | RR24Q2 | closed | eugen_hamuraru | Cannot use Stock API external service with a manual role |
|
Attached Files | |
|
Issue History |
Date Modified | Username | Field | Change |
2024-04-24 17:41 | eugen_hamuraru | New Issue | |
2024-04-24 17:41 | eugen_hamuraru | Assigned To | => eugen_hamuraru |
2024-04-24 17:51 | hgbot | Note Added: 0163681 | |
2024-04-25 07:31 | alostale | Severity | minor => major |
2024-04-25 07:34 | alostale | Project | Modules => Openbravo for Retail |
2024-04-25 07:35 | alostale | Project | Openbravo for Retail => Retail Modules |
2024-04-25 07:35 | alostale | Triggers an Emergency Pack | => No |
2024-04-25 07:35 | alostale | Category | External Integration Infrastructure => Web POS |
2024-04-25 07:36 | alostale | Status | new => scheduled |
2024-04-25 07:40 | hgbot | Resolution | open => fixed |
2024-04-25 07:40 | hgbot | Status | scheduled => closed |
2024-04-25 07:40 | hgbot | Note Added: 0163709 | |
2024-04-25 07:40 | hgbot | Fixed in Version | => RR24Q3 |
2024-04-25 07:40 | hgbot | Note Added: 0163710 | |
2024-04-25 07:43 | alostale | Summary | Cannot use Stock API external service with a manual role => Cannot use Stock API external service with OAuth authentication by a manual role |
2024-04-25 07:43 | alostale | Steps to Reproduce Updated | bug_revision_view_page.php?rev_id=27872#r27872 |
2024-04-25 07:44 | alostale | Type | design defect => defect |
2024-04-25 10:00 | hgbot | Note Added: 0163721 | |
2024-04-25 10:31 | hgbot | Note Added: 0163726 | |
2024-04-25 10:31 | hgbot | Note Added: 0163727 | |
2024-04-25 12:37 | hgbot | Note Added: 0163736 | |
Notes |
|
(0163681)
|
hgbot
|
2024-04-24 17:51
|
|
|
|
(0163709)
|
hgbot
|
2024-04-25 07:40
|
|
|
|
(0163710)
|
hgbot
|
2024-04-25 07:40
|
|
|
|
(0163721)
|
hgbot
|
2024-04-25 10:00
|
|
|
|
(0163726)
|
hgbot
|
2024-04-25 10:31
|
|
|
|
(0163727)
|
hgbot
|
2024-04-25 10:31
|
|
|
|
(0163736)
|
hgbot
|
2024-04-25 12:37
|
|
|