hi ofbiz users,


I can repeatedly reproduce the issue and please tell me what's wrong in my 
steps:





clone trunk and run gradle "ofbiz --load-data readers=demo" to compile and 
gradle ofbiz to run application.

login with admin/ofbiz, and find party 'democustomer' and assign customer order 
purchase role(otherwise i find i cannot login democustomer.

show roles of democustomer and make sure it is only assigned with non-admin 
roles.

login with democustomer/ofbiz, go to security view and see lack permission 
message---this is expected, meaning the role is taking effect.

find parties and can see all the data(is this problem?), and can see the admin 
whose edit button is enabled(seems bug)

click edit button and can go to edit page, change password, save.

try login admin/ofbiz, failed.



expected:
democustomer can never edit, or even cannot see admin at all.


I've attached screen shots with prefixing number as the order. the ui is in 
Chinese automatically but I think it doesn't make a big difference or make it 
harder for you to understand.


am i doing something wrong? please tell me, thanks!




Regards,
Yang

Reply via email to