subject:"\[Dev\] Configuration issue in permission tree \- MB"

Re: [Dev] Configuration issue in permission tree - MB

2015-09-18 Thread Johann Nallathamby

Adding kernel team to the thread because they are most familiar with the
component.
___
Dev mailing list
Dev@wso2.org
http://wso2.org/cgi-bin/mailman/listinfo/dev

Re: [Dev] Configuration issue in permission tree - MB

2015-09-15 Thread Johann Nallathamby

Hi Indika,

So I guess what I suspected is correct. "queue_menu" menu requires higher
permission than "queues_add" menu, and therefore you obviously won't see
the "Add Queue" menu in the UI.
You can skip authorization for "queue_menu" menu by
adding  tag.

I didn't quite understand what you meant in point (6) about the
authorization code. If there is still some problem remaining to be
answered, please explain.

Regards.
___
Dev mailing list
Dev@wso2.org
http://wso2.org/cgi-bin/mailman/listinfo/dev

Re: [Dev] Configuration issue in permission tree - MB

2015-09-13 Thread Dilini Gunatilake

Hi Johann,

Yes, I confirmed it with the MB team and they mentioned that it is a known
issue in IS. That's why I raised the JIRA ticket to IS.

Ramith/Indika,
Can you please confirm this again?

Regards,
Dilini

On Sat, Sep 12, 2015 at 3:31 PM, Johann Nallathamby  wrote:

> Hi Dilini,
>
> There is a good chance of this being a bug in MB side, if they have not
> used proper permissions for the services, service operations and/or UI
> menus items. Or else they could be using contradicting permissions for any
> of the above. Have you confirmed with MB team that they have used
> permissions properly?
>
> I would suggest that you clear it from MB side first, and confirm that
> this is indeed an issue in permission management component, and then we can
> take a look at the issue, because AFAIK we don't have such issues in IS.
> For now I will move the issue to MB project [1], if MB team can confirm as
> this is happening due to a bug in permission management, then you can move
> it back to IDENTITY.
>
> [1] https://wso2.org/jira/browse/MB-1270
>
> Regards.
>
> On Fri, Sep 11, 2015 at 3:25 PM, Dilini Gunatilake 
> wrote:
>
>> Hi All,
>>
>> This is regarding a known issue of the permission tree. When you try to
>> configure permissions of a Role in Management Console, we can either select
>> the parent and enable all the permissions under the parent or deselect the
>> parent and enable only few permissions under the parent. In this case, even
>> it is possible to select only few permissions in the UI, it does not
>> apply.
>>
>> For example, in Message Broker (MB), there are permissions under Queues
>> to Add, Browse, Delete and Purge queues. If I want to allow a user only to
>> Add and Browse queues, I will have to deselect Queue parent element and
>> select only Add and Browse child elements. After applying this, the user
>> will not be able to access the entire Queue section, not only Purge and
>> Delete functions.
>>
>> I have also raised an issue in JIRA [1]. Can you please explain how to
>> achieve the above mentioned scenario in MB?
>>
>> [1] https://wso2.org/jira/browse/IDENTITY-3573
>>
>> Thank you.
>>
>> Regards,
>>
>> --
>>
>> *Dilini GunatilakeSoftware Engineer - QA Team*
>> Mobile : +94 (0) 771 162518
>> dili...@wso2.com
>>
>
>
>
> --
> Thanks & Regards,
>
> *Johann Dilantha Nallathamby*
> Technical Lead & Product Lead of WSO2 Identity Server
> Integration Technologies Team
> WSO2, Inc.
> lean.enterprise.middleware
>
> Mobile - *+9476950*
> Blog - *http://nallaa.wordpress.com *
>



-- 

*Dilini GunatilakeSoftware Engineer - QA Team*
Mobile : +94 (0) 771 162518
dili...@wso2.com
___
Dev mailing list
Dev@wso2.org
http://wso2.org/cgi-bin/mailman/listinfo/dev

Re: [Dev] Configuration issue in permission tree - MB

2015-09-12 Thread Johann Nallathamby

Hi Dilini,

There is a good chance of this being a bug in MB side, if they have not
used proper permissions for the services, service operations and/or UI
menus items. Or else they could be using contradicting permissions for any
of the above. Have you confirmed with MB team that they have used
permissions properly?

I would suggest that you clear it from MB side first, and confirm that this
is indeed an issue in permission management component, and then we can take
a look at the issue, because AFAIK we don't have such issues in IS. For now
I will move the issue to MB project [1], if MB team can confirm as this is
happening due to a bug in permission management, then you can move it back
to IDENTITY.

[1] https://wso2.org/jira/browse/MB-1270

Regards.

On Fri, Sep 11, 2015 at 3:25 PM, Dilini Gunatilake  wrote:

> Hi All,
>
> This is regarding a known issue of the permission tree. When you try to
> configure permissions of a Role in Management Console, we can either select
> the parent and enable all the permissions under the parent or deselect the
> parent and enable only few permissions under the parent. In this case, even
> it is possible to select only few permissions in the UI, it does not
> apply.
>
> For example, in Message Broker (MB), there are permissions under Queues to
> Add, Browse, Delete and Purge queues. If I want to allow a user only to Add
> and Browse queues, I will have to deselect Queue parent element and select
> only Add and Browse child elements. After applying this, the user will not
> be able to access the entire Queue section, not only Purge and Delete
> functions.
>
> I have also raised an issue in JIRA [1]. Can you please explain how to
> achieve the above mentioned scenario in MB?
>
> [1] https://wso2.org/jira/browse/IDENTITY-3573
>
> Thank you.
>
> Regards,
>
> --
>
> *Dilini GunatilakeSoftware Engineer - QA Team*
> Mobile : +94 (0) 771 162518
> dili...@wso2.com
>

-- 
Thanks & Regards,

*Johann Dilantha Nallathamby*
Technical Lead & Product Lead of WSO2 Identity Server
Integration Technologies Team
WSO2, Inc.
lean.enterprise.middleware

Mobile - *+9476950*
Blog - *http://nallaa.wordpress.com *
___
Dev mailing list
Dev@wso2.org
http://wso2.org/cgi-bin/mailman/listinfo/dev

[Dev] Configuration issue in permission tree - MB

2015-09-11 Thread Dilini Gunatilake

Hi All,

This is regarding a known issue of the permission tree. When you try to
configure permissions of a Role in Management Console, we can either select
the parent and enable all the permissions under the parent or deselect the
parent and enable only few permissions under the parent. In this case, even
it is possible to select only few permissions in the UI, it does not
apply.

For example, in Message Broker (MB), there are permissions under Queues to
Add, Browse, Delete and Purge queues. If I want to allow a user only to Add
and Browse queues, I will have to deselect Queue parent element and select
only Add and Browse child elements. After applying this, the user will not
be able to access the entire Queue section, not only Purge and Delete
functions.

I have also raised an issue in JIRA [1]. Can you please explain how to
achieve the above mentioned scenario in MB?

[1] https://wso2.org/jira/browse/IDENTITY-3573

Thank you.

Regards,

-- 

*Dilini GunatilakeSoftware Engineer - QA Team*
Mobile : +94 (0) 771 162518
dili...@wso2.com
___
Dev mailing list
Dev@wso2.org
http://wso2.org/cgi-bin/mailman/listinfo/dev

Re: [Dev] Configuration issue in permission tree - MB

Re: [Dev] Configuration issue in permission tree - MB

Re: [Dev] Configuration issue in permission tree - MB

Re: [Dev] Configuration issue in permission tree - MB

[Dev] Configuration issue in permission tree - MB

5 matches

Site Navigation

Mail list logo

Footer information