Skip to:

  1. Skip to Jira Navigation
  2. Skip to Side Navigation
  3. Skip to Main Content

Restrict roles in login by type

Description

Something like requested in this forum message:
https://groups.google.com/d/msg/idempiere/t659JQ5QaH8/8bSZ-ayADQAJ

Would be good to have a role type to restrict the lists of roles allowed in the different clients.

Suggested initial list:

  • WebUI

  • WebService

  • System Support (these are WebUI roles, but they can be assigned just to support users)

  • Mobile

  • External App 1 .. 5 (this can be 5 custom values for external apps - example portal websites)

Environment

None

Activity

Show:

Norbert Bede March 21, 2019 at 7:25 PM

hi,
we implemented meanwhile a new list to ad_role - > AllowedLoginInterface, actual options are
A-> Any
E-> Webstore
W-> Webui
S-> WS/SOAP

+ appropriate code validate on login
simple but works well.

norbert

Carlos Ruiz March 21, 2019 at 7:24 PM

Committed 9982746
with list:

E1

External App 1

E2

External App 2

E3

External App 3

E4

External App 4

E5

External App 5

MO

Mobile

SS

System Support

SW

Swing

WS

WebService

ZK

WebUI

Carlos Ruiz March 21, 2019 at 5:53 PM

@ ,

> Mobile is designed for mobile plugin or using from a smartphone/tablet ?
Mobile plugin - to replace the flag

> Could you explain more "System support" ? I don't see the use cases
In multi-tenant environment is usual to have some users in System client with access to one or more support roles in tenants. Usually these support roles are restricted, maybe just read-only, or with very limited access to some features.

> Perhaps add Swing ? and deactivate immediately ?
+ Swing

@

> why need reserved "External App 1 .. 5"? just let new client define by itself

Correct, they can be defined in a plugin, but having them in dictionary makes esasy to manage just as a translation - at least for the first 5 slightly smiling face

Hiep Lq March 21, 2019 at 5:30 PM

why need reserved "External App 1 .. 5"? just let new client define by itself

Nicolas Micoud March 21, 2019 at 5:11 PM

Hi ,

Definitely better that the IsMobileAccess checkbox !

Mobile is designed for mobile plugin or using from a smartphone/tablet ?
Could you explain more "System support" ? I don't see the use cases
Perhaps add Swing ? and deactivate immediately grinning face with big eyes ?

Thanks,

Nicolas

Fixed

Details

Assignee

Reporter

Priority

Created March 21, 2019 at 4:51 PM
Updated May 1, 2019 at 12:02 PM
Resolved March 21, 2019 at 7:24 PM