subject:"\[Dev\] Minimum permission required to view a Service provider application in management console"

Re: [Dev] Minimum permission required to view a Service provider application in management console

2017-12-06 Thread Nilasini Thirunavukkarasu

Thank you Omindu for the clarification.

Thanks,
Nila.

On Wed, Dec 6, 2017 at 6:10 PM, Omindu Rathnaweera  wrote:

> There's a limitation managing applications in a fine grained manner from
> the management console. As per [1] you'll have to
> give /permission/admin/manage/identity/applicationmgt permission in order
> to view the menu option in the console, meaning giving only application
> read permission for a role will not be enough to list/view the applications
> in management console. However, this limitation is not there for the soap
> services.
>
> AFAIK this is something we are planning to address in one of the upcoming
> releases.
>
> [1] - https://github.com/wso2/carbon-identity-framework/
> blob/v5.7.5/components/application-mgt/org.wso2.
> carbon.identity.application.mgt.ui/src/main/resources/
> META-INF/component.xml#L30
>
> On Wed, Dec 6, 2017 at 5:54 PM, Nilasini Thirunavukkarasu <
> nilas...@wso2.com> wrote:
>
>> Hi,
>>
>> I wanted to know the minimum permission required in order to view a
>> service provider application?
>>
>> The scenario I tried is
>>
>> 1) Create a service provider travelocity using user1. (It creates an
>> application specific role Application/travelocity)
>> 2) Create another user from user1 let's say the created user is user2.
>> 3) Assigned login permission, Application Management->view permission
>> to  Application/travelocity role and assigned Application/travelocity role
>> to user2.
>> 4) Logged in as user 2 but couldn't able to view the Service provider
>> travelocity.
>> 5) If I assign Application Management permission to
>> Application/travelocity role only I could able to view the service provider
>> travelocity.
>>
>> So is there any way that we can allow to only view the service provider
>> but not allow to edit the service provider? If I use point (5) then there
>> is no way for this option.
>>
>>
>> Any help on this would be highly appreciated.
>>
>> Thanks,
>> Nila.
>> --
>> Nilasini Thirunavukkarasu
>> Software Engineer - WSO2
>>
>> Email : nilas...@wso2.com
>> Mobile : +94775241823 <+94%2077%20524%201823>
>> Web : http://wso2.com/
>>
>>
>> 
>>
>> ___
>> Dev mailing list
>> Dev@wso2.org
>> http://wso2.org/cgi-bin/mailman/listinfo/dev
>>
>>
>
>
> --
> Omindu Rathnaweera
> Senior Software Engineer, WSO2 Inc.
> Mobile: +94 771 197 211 <+94%2077%20119%207211>
>



-- 
Nilasini Thirunavukkarasu
Software Engineer - WSO2

Email : nilas...@wso2.com
Mobile : +94775241823
Web : http://wso2.com/



___
Dev mailing list
Dev@wso2.org
http://wso2.org/cgi-bin/mailman/listinfo/dev

Re: [Dev] Minimum permission required to view a Service provider application in management console

2017-12-06 Thread Omindu Rathnaweera

There's a limitation managing applications in a fine grained manner from
the management console. As per [1] you'll have to
give /permission/admin/manage/identity/applicationmgt permission in order
to view the menu option in the console, meaning giving only application
read permission for a role will not be enough to list/view the applications
in management console. However, this limitation is not there for the soap
services.

AFAIK this is something we are planning to address in one of the upcoming
releases.

[1] -
https://github.com/wso2/carbon-identity-framework/blob/v5.7.5/components/application-mgt/org.wso2.carbon.identity.application.mgt.ui/src/main/resources/META-INF/component.xml#L30

On Wed, Dec 6, 2017 at 5:54 PM, Nilasini Thirunavukkarasu  wrote:

> Hi,
>
> I wanted to know the minimum permission required in order to view a
> service provider application?
>
> The scenario I tried is
>
> 1) Create a service provider travelocity using user1. (It creates an
> application specific role Application/travelocity)
> 2) Create another user from user1 let's say the created user is user2.
> 3) Assigned login permission, Application Management->view permission
> to  Application/travelocity role and assigned Application/travelocity role
> to user2.
> 4) Logged in as user 2 but couldn't able to view the Service provider
> travelocity.
> 5) If I assign Application Management permission to
> Application/travelocity role only I could able to view the service provider
> travelocity.
>
> So is there any way that we can allow to only view the service provider
> but not allow to edit the service provider? If I use point (5) then there
> is no way for this option.
>
>
> Any help on this would be highly appreciated.
>
> Thanks,
> Nila.
> --
> Nilasini Thirunavukkarasu
> Software Engineer - WSO2
>
> Email : nilas...@wso2.com
> Mobile : +94775241823 <+94%2077%20524%201823>
> Web : http://wso2.com/
>
>
> 
>
> ___
> Dev mailing list
> Dev@wso2.org
> http://wso2.org/cgi-bin/mailman/listinfo/dev
>
>


-- 
Omindu Rathnaweera
Senior Software Engineer, WSO2 Inc.
Mobile: +94 771 197 211
___
Dev mailing list
Dev@wso2.org
http://wso2.org/cgi-bin/mailman/listinfo/dev

[Dev] Minimum permission required to view a Service provider application in management console

2017-12-06 Thread Nilasini Thirunavukkarasu

Hi,

I wanted to know the minimum permission required in order to view a service
provider application?

The scenario I tried is

1) Create a service provider travelocity using user1. (It creates an
application specific role Application/travelocity)
2) Create another user from user1 let's say the created user is user2.
3) Assigned login permission, Application Management->view permission
to  Application/travelocity role and assigned Application/travelocity role
to user2.
4) Logged in as user 2 but couldn't able to view the Service provider
travelocity.
5) If I assign Application Management permission to Application/travelocity
role only I could able to view the service provider travelocity.

So is there any way that we can allow to only view the service provider but
not allow to edit the service provider? If I use point (5) then there is no
way for this option.


Any help on this would be highly appreciated.

Thanks,
Nila.
-- 
Nilasini Thirunavukkarasu
Software Engineer - WSO2

Email : nilas...@wso2.com
Mobile : +94775241823 <+94%2077%20524%201823>
Web : http://wso2.com/



___
Dev mailing list
Dev@wso2.org
http://wso2.org/cgi-bin/mailman/listinfo/dev

Re: [Dev] Minimum permission required to view a Service provider application in management console

Re: [Dev] Minimum permission required to view a Service provider application in management console

[Dev] Minimum permission required to view a Service provider application in management console

3 matches

Site Navigation

Mail list logo

Footer information