Project:
| View Issue Details[ Jump to Notes ] | [ Issue History ] [ Print ] | |||||||
| ID | ||||||||
| 0057513 | ||||||||
| Type | Category | Severity | Reproducibility | Date Submitted | Last Update | |||
| defect | [Openbravo ERP] A. Platform | major | always | 2024-12-19 21:58 | 2025-01-20 00:01 | |||
| Reporter | egoitz | View Status | public | |||||
| Assigned To | ablasco | |||||||
| Priority | urgent | Resolution | fixed | Fixed in Version | ||||
| Status | closed | Fix in branch | Fixed in SCM revision | diffs?commit | ||||
| Projection | none | ETA | none | Target Version | ||||
| OS | Any | Database | Any | Java version | ||||
| OS Version | Database version | Ant version | ||||||
| Product Version | SCM revision | |||||||
| Review Assigned To | ||||||||
| Web browser | ||||||||
| Modules | Core | |||||||
| Regression level | ||||||||
| Regression date | ||||||||
| Regression introduced in release | ||||||||
| Regression introduced by commit | ||||||||
| Triggers an Emergency Pack | No | |||||||
| Summary | 0057513: The session is modified when using the POS and opening a new tab with the url with the backoffice URL even when not access | |||||||
| Description | When using a role defined as restrict backoffice access to yes, if you are using the POS and you open a new tab with the backoffice URL, you get a message saying that you don't have access, but the ad_session row linked to the user/session you were using is changed from OB_POS to S (Sucess). The loging_status should be keep as OB_POS becuas the access to BO is not allowed/done. This is affecting the invoicing of our customers as we are invoicing them in SaaS based on the users doing a Successful login in the backoffice. | |||||||
| Steps To Reproduce | - Define the vallblancauser role as "restrict backoffice access" to Y - Access to the pos with the valblanca user and vallblancaruser role. - See in another profile, in the session window as system admin, that there is a session with login_status OB-POS - ON the previous profile where the pos login was done, open a new tab putting the URL of the backoffice - You get a error message saying that you can access to the backoffice - Check on the session that the Login_status has changed to Sucess | |||||||
| Tags | No tags attached. | |||||||
| Attached Files | ||||||||
 Relationships [ Relation Graph ]
[ Dependency Graph ]
|
|
 Relationships |
|
Notes |
|
|
(0174014) hgbot (developer) 2025-01-10 14:21 |
Merge Request created: https://gitlab.com/openbravo/product/openbravo/-/merge_requests/1498 [^] |
|
(0174340) hgbot (developer) 2025-01-19 23:58 |
Merge request merged: https://gitlab.com/openbravo/product/openbravo/-/merge_requests/1498 [^] |
|
Notes |
|
Issue History |
|||
| Date Modified | Username | Field | Change |
| 2024-12-19 21:58 | egoitz | New Issue | |
| 2024-12-19 21:58 | egoitz | Assigned To | => Triage Platform Base |
| 2024-12-19 21:58 | egoitz | Modules | => Core |
| 2024-12-19 21:58 | egoitz | Triggers an Emergency Pack | => No |
| 2025-01-10 09:51 | AugustoMauch | Assigned To | Triage Platform Base => ablasco |
| 2025-01-10 11:38 | ablasco | Status | new => acknowledged |
| 2025-01-10 14:21 | hgbot | Note Added: 0174014 | |
| 2025-01-19 23:58 | hgbot | Note Added: 0174340 | |
| 2025-01-20 00:00 | AugustoMauch | Status | acknowledged => scheduled |
| 2025-01-20 00:01 | AugustoMauch | Status | scheduled => resolved |
| 2025-01-20 00:01 | AugustoMauch | Fixed in SCM revision | => https://gitlab.com/openbravo/product/openbravo/-/merge_requests/1498/diffs?commit_id=5e601bcab8e307325c7b64322273eb556ac35bce [^] |
| 2025-01-20 00:01 | AugustoMauch | Resolution | open => fixed |
| 2025-01-20 00:01 | AugustoMauch | Status | resolved => closed |
|
Issue History |
| Copyright © 2000 - 2009 MantisBT Group |
 |