[jira] Created: (OFBIZ-1428) If user times out user should be logged out

If user times out user should be logged out
-------------------------------------------

                 Key: OFBIZ-1428
                 URL: https://issues.apache.org/jira/browse/OFBIZ-1428
             Project: OFBiz
          Issue Type: Improvement
          Components: pos
    Affects Versions: SVN trunk
         Environment: Any
            Reporter: Vince Clark


Current functionality requires same user to log back in. This is problematic if the user originally logged in is no longer available. The POS client cannot be used by another user.

--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.

     [ https://issues.apache.org/jira/browse/OFBIZ-1428?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Jacques Le Roux reassigned OFBIZ-1428:
--------------------------------------

    Assignee: Jacques Le Roux

--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.

    [ https://issues.apache.org/jira/browse/OFBIZ-1428?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel#action_12547768 ]

Jacques Le Roux commented on OFBIZ-1428:
----------------------------------------

I'm not sure why this behaviour exists and I propose to keep it but not as default. This can be easily addressed using a sameLogin parameter in XuiSession.java (in framework/guiapp), something like

    public void login(String username, String password) throws UserLoginFailure {
        // if already logged in; verify for lock
        if (this.userLogin != null) {
            if (!userLogin.getString("userLoginId").equals(username) && sameLogin == true ) {
                throw new UserLoginFailure("Username does not match already logged in user!");
            }
        }
        this.userLogin = this.checkLogin(username, password);
    }

Where sameLogin comes from a new xuisession.properties file. BTW whe should also provide i18n for the UserLoginFailure strings in XuiSession.java.

If nobody beats me on it I will do it later this week

--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.

     [ https://issues.apache.org/jira/browse/OFBIZ-1428?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Jacques Le Roux closed OFBIZ-1428.
----------------------------------

    Resolution: Fixed

This behaviour has be changed in trunk revision 604423. As I consider that it should be the default behavor I also commited in release4.0 604424

Commit comment is ;
Now by default if an user is timed out or has blocked the POS any other user can login.
This behavior is reversible using isSameLogin parameter in new xui.properties.file.
Note that this behavior is not specific to POS and could be used by any applications using XUI.

--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.

    [ https://issues.apache.org/jira/browse/OFBIZ-1428?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel#action_12552071 ]

Jacques Le Roux commented on OFBIZ-1428:
----------------------------------------

I also internationalised the UserLoginFailure messages (l10n : english and french local only)

--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.