For authorization you need to use OFBiz permissions:
https://cwiki.apache.org/confluence/display/OFBTECH/OFBiz+security
Jacques
From: "Adrian Crum" <[email protected]>
CAS/LDAP is only used for authentication, not for authorization.
-Adrian
On 9/13/2011 8:19 AM, stewie wrote:
Hi.
I am working on a project which is using OFBiz as a framework.
I have already found some information about integration OFBiz with CAS and
LDAP.
But the only information I found is about performing authentication.
Unfortunately, I need more advanced functionality. The concept is to keep
all privilege rules in central server working with LDAP, independently
from
OFBiz database. For example, when some user logs in, wants to show/modify
some his project tasks, he can only see the data that he is allowed to by
some rules stored on external server.
Are there any solutions to this problem already present or I have to
implement this all on my own?
Thank you for your time.
