I want to create dynamic authorization schemes in my application. but i donot know the name of roles,i want the owner of the application create his roles after buying my app.
i create pages for creating roles in my app.
i tried to create an authorization scheme on 3 tables:users,roles and pages ,these pages appear depend on the menue it related to it in the navigation menue
Now the owner can grant each user one of the privileges, but if one page doesnot belong to any menue ,the user will recive an message 'sorry you are not authorized'.
how can i grant the user privilage to see pages does not relate to any menue in tha navigation menue?
Related
How to display only the login page of the Oracle Apex admin section for management?
If you enter the login address of the Oracle Apex management department, they will encounter an error
Sorry, this page isn't available oracle apex
If I understand your question correctly, then this is what you want:
An application with no authentication for its pages, but when a user clicks on "Administration" a login screen is shown and user needs to authenticate.
Here is how to create such an application from scratch. In my case I'm creating an empty application (only a home page) with no authentication required and a link to "Administration" that does require login. Test is done on apex 22.1 but this should work on all versions.
Create new application using application wizard. Check the "Features" section so the "Administration" pages are created. No need to add any pages since by default a home page is created. Click "Create Application"
Shared Components > Application Definition > Security. Set "Authorization Scheme" to "no application authorisation required".
Page 1 > Page properties > Security > Authentication > "Page is public". Now when a user accesses the application he will not be prompted for login. Note that when you run the application, there will be no menu option for the "Administration" section. That is because the navigation menu entry for "Administration" has an authorization scheme set.
Shared Components > Lists > Navigation Menu. Edit the "Administration" entry. Set "Authorization" to "No Authorization Required".
Now run the page. You'll see you're not prompted for a login on page 1 and the "Administration" link is visible. When clicking on "Administration" a login screen is shown.
You can restrict access to APEX in general by IP address (see documentation: https://docs.oracle.com/en/database/oracle/application-express/21.2/aeadm/configuring-service-level-security-settings.html#GUID-1952AB59-7DC5-48C3-B4A5-31398CEA1485), but not to the Internal/Admin login page specifically.
To restrict access to a specific, otherwise publicly available page within APEX you'd need to place an IP filter on a reverse HTTP proxy or load balancer in front of APEX, then limit APEX to receiving connections only from that proxy. The problem with that arrangement is that most systems can't determine who a user is or what their role is (management vs user) based solely on their network address.
The pretty much universal use of DHCP to provide network addresses for client systems means that addresses aren't constant or associated with a specific person, and most people wouldn't want to limit access to a specific workstation anyway: your requirement was identity-based, not address-based. The best you could do with a reverse-proxy network restriction would likely be to limit connections to the login page to your internal company network, and even that might not be practical depending on your situation.
All of that is a very round-about way of saying no: there is no practical identity-based way for most systems to limit access to a public login page, because the user's identity can't be established until after they login. The best you can do would be to use a reverse proxy or load balancer to place a blanket, network-based restriction on the login page.
My client wants the access to create users and roles in magento, i have already given him a limited users created by myself, in that users there is not permission to add users and roles.
My question: Is there any way i can give him permissions to add users and roles but, all the menus that i have made hidden should stay hidden.
What i Want to achieve
I want to give access of creating roles and users to my client, but i don't to revel some menu like "System" to him
In Magento 1.X:
System->Permission->Roles->(Role Name)->Roles Resources->Custom
In Magneto 2.X:
System->User Roles->(Role Name)->Roles Resources->Custom
To give the access for "Roles and User" you have to reveal the
"system" menu to the user as it's the parent of "Roles and User". But, you can disable other inner menus by unchecking them.
You have to only check the System > Permission > Roles > User Bosex from Roles Resouce Tree and it will only allow the user to access the Roles and User.
sorry if this is a very stupid question, I'm really new to Genexus I'm following the online course.
I have a small web application with GAM, I cant find the way to active the option for users to create their own accounts in the login page, is this an option or should I create my own web panel?
Thanks.
There's an object called GAMHome, that's where you need to login to create Roles, Users, logins, etc.
Just Run it from the Main Programs category node at the Folder View panel
By default, Magento shows different widget types as options in the backend, such as 'Cms Page Link' and 'Catalog Category Link'. However, I want to provide my client only with the theme's relevant widgets, so I want to be able to remove some widgets, at least as an admin option.
The options for the backend are set via the respective core modules /etc/widget.xml. What is the best way to override this, without a core hack?
Any suggestion would be much appreciated!
#Daco
Magento has features to implement the above. It is achieved with the help of "ROLES" and "USERS" in the system tab of magento admin panel.
Solution
Create a role for your client "client_xyz" by going to
System->Permission->Roles.
Add Resources to the role, these resources are the links that you
would like to restrict the users upon or grant them permissions.
After creating the roles and resources, create a user to be given to the client. The Users can be created under System->Permissions->Users.
Create the users assign the roles that are already created. And now when the users login using this newly created credentials. They will only see what is granted by the Admin.
I am creating a asp.net mvc 4 website.
Requirement is -
There are roles given for each user for this site.
Also there is table specifying which all tabs/views a role can have access to.
Based on user's role & view/page he/she is visiting, disable or enable all controls on that view/page.
Eg.
User with Account role don't have access to Search & View page. For this user these 2 pages should show all controls in disabled state.
User with Admin role have access to Search & View page. For this user these 2 pages should show all controls in enabled state.
Any solution for this?