HI friends
i develop a application in ENSEMBLE [2009], in that i restrict some user to access all links except "Ensemble Management Portal" i done this by changing roles for that particular user as Home->securitymanagement->Users->Editusers->roles. But when i logged in in to the system managenet portal and change the namespace it's logged out , Again i try to login means i got the Error Access Denied , Please help me to find the solution
Thansk in advance
I think you just don't have enough privileges to access specific namespace. Just remove $NAMESPACE=something from URL when you try to login again.
Related
good morning to everyone, I will comment on the situation to see if you can give me an idea ...
I am using Hyn Tenancy (Saas) and Spatie Permissions
Currently I have the whole system working without problems and it is as follows:
Users can log in to domain.com or sub1.domain.com or sub2.domain.com and from either enter their account and the session is shared.
and a general dashboard where it shows a history of your purchases in any subdomain.
so far so good ...
Now create the dashboard for the admins ... which is accessed from sub1.domain.com/admin
the problem I have is that everyone who is admin can enter but I only need admin1 to enter sub1.domain.com/admin
admin2 to sub2.domanin.com/admin
Any can help me plz?
It's look like you can't share any code with community.
So with experience in laravel permission and your senario as I know you want each subdomain wit an admin have only access to his/her subdomain admin area.
you should create a new gate or middleware or in your gate for admins define an if to check if the user is a member of subdomain?
in laravel permission only administrators explited from other users and you should define new gate or middleware and add it to admin route definition.
Solved, i use a uuid from subdomain... and compare with a user uuid... if correct it show the forms, else search the uuid in a subdomain and redirect it to our domain.
Thanks you!
See screenshot of what I see as a user in Gmail:
Is there a way to get programatic access to this list w/o needing super admin access? I already saw the API https://developers.google.com/admin-sdk/directory/v1/reference/users/list but it requires super admin level access to access it. If I query it as a user I get "403: Not Authorized to access this resource/api".
Is there a scope I can ask for so a user can get access to the company directory?
For non admin, you have to use the parameter "viewType=domain_public" so the users can access to this information.
Keep in mind that for this parameter to work, the contact sharing options should be enabled.
To check for this options, in Admin Console go to "Apps > Google Apps > Contacts > Sharing Settings"
Check if this works for you.
our company is developing some services which use Google's ADMIN SDK apis.
Our problem is that when we call the apis endpoints it starts to say "403 insufficient permissions".
If we change the server with another IP then the service works again without any trouble.
Since we need to use the IP where we get "insufficient permissions" is it possibile that this is blackisted? And if so is it possibile
to whitelist them?
We havn't found any answer to this question in the documentation.
Thanks in advance
Antonio
Insufficient permissions does not mean you have been black listed. It means that you are trying to execute a method against the API that you haven't been authenticated for.
You specify what access you need by the scope command in your authentication process. There are a large number of scopes.
Lets say I authenticate my user with
https://www.googleapis.com/auth/admin.directory.group.member.readonly Scope
for only retrieving group member roles and information.
This will only give me read-only access to the group member directory.
What happens if I try and do Users: insert the documentation states that I need the scope of https://www.googleapis.com/auth/admin.directory.user. So if I try and insert a user when I only have read only access I am going to get
403 insufficient permissions
Error:
This account is not authorized to access this site. To gain access to
the system, you will need to login with an account authorized to
access this site. For additional questions, please contact your system
administrator.
Oracle says "The user does not have any roles on the site".
Link:
https://support.oracle.com/epmos/faces/DocumentDisplay?_afrLoop=469675110594161&id=1991585.1&displayIndex=2&_afrWindowMode=0&_adf.ctrl-state=tecmcxrrr_423#SYMPTOM
fwadmin was the only user which I had to access. Since I had shared my creds, someone might had changed roles.
When I checked userpublication table as mentioned in the link, it looks fine. Help me how to proceed.
As mentioned in the link, GeneralAdmin ACL for fwadmin was missing in the DB. Inserted a new row and restarted the managed server. Solved.
https://support.oracle.com/epmos/faces/DocumentDisplay?_afrLoop=469675110594161&id=1991585.1&displayIndex=2&_afrWindowMode=0&_adf.ctrl-state=tecmcxrrr_423#SYMPTOM
When I logged in with the user who has non-admin security role the dashboard is not loading and browser will get hanged. But when I logged in with user who had Admin role its working good. So, whats the issue in this scenario..?
It seems a security issue. You will have to check the permissions for the role that the non-admin user has and check if there are limitations on the entity that is being displayed in the dashboard.
maybe this link will help you: http://www.dynamicscrmtrickbag.com/2011/07/15/dynamics-crm-2011-charts-and-dashboards-who-can-see-what/
Hope this will be helpfull
EDIT: Maybe another role conflicts with the one of system admin that might also be possible