hi ofbiz users,
I can repeatedly reproduce the issue and please tell me what's wrong in my steps: clone trunk and run gradle "ofbiz --load-data readers=demo" to compile and gradle ofbiz to run application. login with admin/ofbiz, and find party 'democustomer' and assign customer order purchase role(otherwise i find i cannot login democustomer. show roles of democustomer and make sure it is only assigned with non-admin roles. login with democustomer/ofbiz, go to security view and see lack permission message---this is expected, meaning the role is taking effect. find parties and can see all the data(is this problem?), and can see the admin whose edit button is enabled(seems bug) click edit button and can go to edit page, change password, save. try login admin/ofbiz, failed. expected: democustomer can never edit, or even cannot see admin at all. I've attached screen shots with prefixing number as the order. the ui is in Chinese automatically but I think it doesn't make a big difference or make it harder for you to understand. am i doing something wrong? please tell me, thanks! Regards, Yang