Re: [OFBiz] Dev - data based permissions
Posted by David E. Jones on Sep 08, 2005; 6:49pm
URL: http://ofbiz.116.s1.nabble.com/OFBiz-Dev-data-based-permissions-tp166001p166002.html
Alexandre,
What would this do:
<if-has-permission action="_VIEW" permission="PARTYMGR"
entity="Party" role="member"/>
when you say role="member" do you mean that the PartyRole entity
should be considered somehow?
Usually data-level (as opposed to functionality level) security is
handled through some sort of chain of entities, preferably
represented by a view entity, that must have record(s) in place that
link to user to whatever is being accessed. There are example of this
for the Product and ProductCategory administration in the Catalog
Manager (see the ProductServices.xml file).
-David
On Sep 8, 2005, at 11:11 AM, Alexandre Gomes wrote:
> Hello Ofbiz community,
>
> I need to give viewing permission to a page using data based
> permission not
> funcionality based permission.
> For instance instead of the following code :
>
> <if-has-permission action="_VIEW" permission="PARTYMGR"/>
>
> I would like to have something like :
>
> <if-has-permission action="_VIEW" permission="PARTYMGR"
> entity="Party" role="member"/>
>
> Does anyone have any sugestion?
>
>
> Thank you,
> Alexandre Gomes
>
> _______________________________________________
> Dev mailing list
> [hidden email]
> http://lists.ofbiz.org/mailman/listinfo/dev
>
_______________________________________________
Dev mailing list
[hidden email]
http://lists.ofbiz.org/mailman/listinfo/dev
URL: http://ofbiz.116.s1.nabble.com/OFBiz-Dev-data-based-permissions-tp166001p166002.html
Alexandre,
What would this do:
<if-has-permission action="_VIEW" permission="PARTYMGR"
entity="Party" role="member"/>
when you say role="member" do you mean that the PartyRole entity
should be considered somehow?
Usually data-level (as opposed to functionality level) security is
handled through some sort of chain of entities, preferably
represented by a view entity, that must have record(s) in place that
link to user to whatever is being accessed. There are example of this
for the Product and ProductCategory administration in the Catalog
Manager (see the ProductServices.xml file).
-David
On Sep 8, 2005, at 11:11 AM, Alexandre Gomes wrote:
> Hello Ofbiz community,
>
> I need to give viewing permission to a page using data based
> permission not
> funcionality based permission.
> For instance instead of the following code :
>
> <if-has-permission action="_VIEW" permission="PARTYMGR"/>
>
> I would like to have something like :
>
> <if-has-permission action="_VIEW" permission="PARTYMGR"
> entity="Party" role="member"/>
>
> Does anyone have any sugestion?
>
>
> Thank you,
> Alexandre Gomes
>
> _______________________________________________
> Dev mailing list
> [hidden email]
> http://lists.ofbiz.org/mailman/listinfo/dev
>
_______________________________________________
Dev mailing list
[hidden email]
http://lists.ofbiz.org/mailman/listinfo/dev
smime.p7s (3K) | Free forum by Nabble | Edit this page |