Security Issue, Can't Access a Web App
Locked
Security Issue, Can't Access a Web App
 
|
Hi There,
While following the this tutorial - https://www.hotwaxsystems.com/ofbiz/ofbiz-tutorials/ofbiz-tutorial-how-to-setup-permission-for-a-new-user-to-access-an-application/ - to understand how the security model works, although I assigned the mentioned security group for 'ASSETMAINTADMIN' I can't login to the app using the URL 'https://localhost:8443/assetmaint/control/login' getting a message 'You cannot login to this application'. Any idea why is this? Regards, Emad. |
Re: Security and Permission Issue, what is OFBTOOLS and where to find it.
|
|
Hello Gents,
Back to this issue. I started looking for information regarding security and I got to know that assets are coming under accounting and based on - correct me please if I'm wrong - 'base-permission' for this the user needs to have OFBTOOLS,ACCOUNTING security groups to be allowed to access. I can't find the same in the data populated with my new Ofbiz installation, I found other threads talking about having such 'static data' scattered between 'demo' and 'seed' data so I reloaded the same using './gradlew "ofbiz --load-data readers=seed,seed-initial,ext,demo"' but nothing changed. Would you please shed some light ob this? Regards, Emad. On 2020/11/01 15:19:54, Emad Radwan <[hidden email]> wrote: > Hi There, > > While following the this tutorial - https://www.hotwaxsystems.com/ofbiz/ofbiz-tutorials/ofbiz-tutorial-how-to-setup-permission-for-a-new-user-to-access-an-application/ - to understand how the security model works, although I assigned the mentioned security group for 'ASSETMAINTADMIN' I can't login to the app using the URL 'https://localhost:8443/assetmaint/control/login' getting a message 'You cannot login to this application'. Any idea why is this? > > Regards, > > Emad. > |
Re: Security and Permission Issue, what is OFBTOOLS and where to find it.
|
|
I just need to add a comment to save your time, please help if you can.
What I'm missing is OFBTOOLS,ACCOUNTING entries in 'Security_Groups' while I understand that their permissions are available in 'Security_Permissions'. On 2020/11/04 17:15:21, Emad Radwan <[hidden email]> wrote: > Hello Gents, > > Back to this issue. I started looking for information regarding security and I got to know that assets are coming under accounting and based on - correct me please if I'm wrong - 'base-permission' for this the user needs to have OFBTOOLS,ACCOUNTING security groups to be allowed to access. I can't find the same in the data populated with my new Ofbiz installation, I found other threads talking about having such 'static data' scattered between 'demo' and 'seed' data so I reloaded the same using './gradlew "ofbiz --load-data readers=seed,seed-initial,ext,demo"' but nothing changed. > > Would you please shed some light ob this? > > Regards, > > Emad. > > On 2020/11/01 15:19:54, Emad Radwan <[hidden email]> wrote: > > Hi There, > > > > While following the this tutorial - https://www.hotwaxsystems.com/ofbiz/ofbiz-tutorials/ofbiz-tutorial-how-to-setup-permission-for-a-new-user-to-access-an-application/ - to understand how the security model works, although I assigned the mentioned security group for 'ASSETMAINTADMIN' I can't login to the app using the URL 'https://localhost:8443/assetmaint/control/login' getting a message 'You cannot login to this application'. Any idea why is this? > > > > Regards, > > > > Emad. > > > |
Re: Security and Permission Issue, what is OFBTOOLS and where to find it.
|
|
Hi Emad,
OFBTOOLS and ACCOUNTING are the base permissions. It should be assigned to the appropriate SecurityGroup and this SecurityGroup should be assigned to the user via UserLoginSecurityGroup. You can explore AccountingDemoData.xml to get the exact idea of the system. HTH! -- Thanks & Regards Pawan Verma Technical Consultant *HotWax Systems* *Enterprise open source experts* http://www.hotwaxsystems.com On Wed, Nov 4, 2020 at 11:30 PM Emad Radwan <[hidden email]> wrote: > I just need to add a comment to save your time, please help if you can. > > What I'm missing is OFBTOOLS,ACCOUNTING entries in 'Security_Groups' while > I understand that their permissions are available in > 'Security_Permissions'. > > On 2020/11/04 17:15:21, Emad Radwan <[hidden email]> wrote: > > Hello Gents, > > > > Back to this issue. I started looking for information regarding security > and I got to know that assets are coming under accounting and based on - > correct me please if I'm wrong - 'base-permission' for this the user needs > to have OFBTOOLS,ACCOUNTING security groups to be allowed to access. I > can't find the same in the data populated with my new Ofbiz installation, I > found other threads talking about having such 'static data' scattered > between 'demo' and 'seed' data so I reloaded the same using './gradlew > "ofbiz --load-data readers=seed,seed-initial,ext,demo"' but nothing changed. > > > > Would you please shed some light ob this? > > > > Regards, > > > > Emad. > > > > On 2020/11/01 15:19:54, Emad Radwan <[hidden email]> wrote: > > > Hi There, > > > > > > While following the this tutorial - > https://www.hotwaxsystems.com/ofbiz/ofbiz-tutorials/ofbiz-tutorial-how-to-setup-permission-for-a-new-user-to-access-an-application/ > - to understand how the security model works, although I assigned the > mentioned security group for 'ASSETMAINTADMIN' I can't login to the app > using the URL 'https://localhost:8443/assetmaint/control/login' getting a > message 'You cannot login to this application'. Any idea why is this? > > > > > > Regards, > > > > > > Emad. > > > > > > |
Re: Security and Permission Issue, what is OFBTOOLS and where to find it.
|
|
Hi Pawan,
I solved this user access by adding 'ACCTG_FUNCTNL_ADMIN' security group to his user login and I understand from the related permissions that it has all accounting and 'OFBTOOLS_VIEW' permissions! However, and forgive my ignorance, what do you mean that 'OFBTOOLS and ACCOUNTING' are base permissions? Is it a kind of convention? as how I can relate these with 'ACCTG_FUNCTNL_ADMIN'? Are they stored on another table or XML file? and please what OFBOOLs stand for? Sorry again for the many questions, and thanks for your time. Regards, Emad On 2020/11/04 18:26:50, Pawan Verma <[hidden email]> wrote: > Hi Emad, > > OFBTOOLS and ACCOUNTING are the base permissions. It should be assigned to > the appropriate SecurityGroup and this SecurityGroup should be assigned to > the user via UserLoginSecurityGroup. > > You can explore AccountingDemoData.xml to get the exact idea of the system. > > HTH! > -- > Thanks & Regards > Pawan Verma > Technical Consultant > *HotWax Systems* > *Enterprise open source experts* > http://www.hotwaxsystems.com > > > On Wed, Nov 4, 2020 at 11:30 PM Emad Radwan <[hidden email]> wrote: > > > I just need to add a comment to save your time, please help if you can. > > > > What I'm missing is OFBTOOLS,ACCOUNTING entries in 'Security_Groups' while > > I understand that their permissions are available in > > 'Security_Permissions'. > > > > On 2020/11/04 17:15:21, Emad Radwan <[hidden email]> wrote: > > > Hello Gents, > > > > > > Back to this issue. I started looking for information regarding security > > and I got to know that assets are coming under accounting and based on - > > correct me please if I'm wrong - 'base-permission' for this the user needs > > to have OFBTOOLS,ACCOUNTING security groups to be allowed to access. I > > can't find the same in the data populated with my new Ofbiz installation, I > > found other threads talking about having such 'static data' scattered > > between 'demo' and 'seed' data so I reloaded the same using './gradlew > > "ofbiz --load-data readers=seed,seed-initial,ext,demo"' but nothing changed. > > > > > > Would you please shed some light ob this? > > > > > > Regards, > > > > > > Emad. > > > > > > On 2020/11/01 15:19:54, Emad Radwan <[hidden email]> wrote: > > > > Hi There, > > > > > > > > While following the this tutorial - > > https://www.hotwaxsystems.com/ofbiz/ofbiz-tutorials/ofbiz-tutorial-how-to-setup-permission-for-a-new-user-to-access-an-application/ > > - to understand how the security model works, although I assigned the > > mentioned security group for 'ASSETMAINTADMIN' I can't login to the app > > using the URL 'https://localhost:8443/assetmaint/control/login' getting a > > message 'You cannot login to this application'. Any idea why is this? > > > > > > > > Regards, > > > > > > > > Emad. > > > > > > > > > > |
Re: Security and Permission Issue, what is OFBTOOLS and where to find it.
Administrator
|
In reply to this post by Emad Radwan
Hi Emad,
Did you read this https://cwiki.apache.org/confluence/display/OFBIZ/OFBiz+Security+Permissions ? HTH Jacques Le 04/11/2020 à 18:15, Emad Radwan a écrit : > Hello Gents, > > Back to this issue. I started looking for information regarding security and I got to know that assets are coming under accounting and based on - correct me please if I'm wrong - 'base-permission' for this the user needs to have OFBTOOLS,ACCOUNTING security groups to be allowed to access. I can't find the same in the data populated with my new Ofbiz installation, I found other threads talking about having such 'static data' scattered between 'demo' and 'seed' data so I reloaded the same using './gradlew "ofbiz --load-data readers=seed,seed-initial,ext,demo"' but nothing changed. > > Would you please shed some light ob this? > > Regards, > > Emad. > > On 2020/11/01 15:19:54, Emad Radwan <[hidden email]> wrote: >> Hi There, >> >> While following the this tutorial - https://www.hotwaxsystems.com/ofbiz/ofbiz-tutorials/ofbiz-tutorial-how-to-setup-permission-for-a-new-user-to-access-an-application/ - to understand how the security model works, although I assigned the mentioned security group for 'ASSETMAINTADMIN' I can't login to the app using the URL 'https://localhost:8443/assetmaint/control/login' getting a message 'You cannot login to this application'. Any idea why is this? >> >> Regards, >> >> Emad. >> |
|
|
Hi Emad,
You can go to jira ofbiz and find the post posted by me. I had a similar case which I had sorted if out with detailed description through beibg helped from the group. Get Outlook for Android<https://aka.ms/ghei36> ________________________________ From: Jacques Le Roux <[hidden email]> Sent: Thursday, November 5, 2020 4:03:22 AM To: [hidden email] <[hidden email]> Subject: Re: Security and Permission Issue, what is OFBTOOLS and where to find it. Hi Emad, Did you read this https://cwiki.apache.org/confluence/display/OFBIZ/OFBiz+Security+Permissions ? HTH Jacques Le 04/11/2020 à 18:15, Emad Radwan a écrit : > Hello Gents, > > Back to this issue. I started looking for information regarding security and I got to know that assets are coming under accounting and based on - correct me please if I'm wrong - 'base-permission' for this the user needs to have OFBTOOLS,ACCOUNTING security groups to be allowed to access. I can't find the same in the data populated with my new Ofbiz installation, I found other threads talking about having such 'static data' scattered between 'demo' and 'seed' data so I reloaded the same using './gradlew "ofbiz --load-data readers=seed,seed-initial,ext,demo"' but nothing changed. > > Would you please shed some light ob this? > > Regards, > > Emad. > > On 2020/11/01 15:19:54, Emad Radwan <[hidden email]> wrote: >> Hi There, >> >> While following the this tutorial - https://www.hotwaxsystems.com/ofbiz/ofbiz-tutorials/ofbiz-tutorial-how-to-setup-permission-for-a-new-user-to-access-an-application/ - to understand how the security model works, although I assigned the mentioned security group for 'ASSETMAINTADMIN' I can't login to the app using the URL 'https://localhost:8443/assetmaint/control/login' getting a message 'You cannot login to this application'. Any idea why is this? >> >> Regards, >> >> Emad. >> |
«
Return to OFBiz - User
|
1 view|%1 views
| Free forum by Nabble | Edit this page |