Maybe we could use "Security Roles" and not "Role limited permissions" inside
Security Groups for more flexibility ?
Définitions are in http://docs.ofbiz.org/display/OFBTECH/OFBiz+security
I will use that for now because I need something to move forward
Jacques
From: "Ray" <[email protected]>
It came about from a requirement driven around roles so that was the
suggested limiter. The example would be someone with a role of "Sales
Rep" who works in house answering calls, processing paperwork might
easily deal with 200 a day where as someone operating as "Sales
Consultant" in the field visiting clients personally might only deal
with 20 a day.
They both have security to access the same client view but the user
request was to limit them with a differing number of allowed accesses
based on their roles.
If that needs to be translated in to security groups for implementation
to fit in with OFBiz practices then fine, I'm not struck to it being
roles. This was thought to be a generally useful feature others might be
interested in hence we are trying to make it compatible for the community.
Ray
David E Jones wrote:
Instead of attaching this to a Party RoleType, it would be better to
attach it to a SecurityPermission or SecurityGroup. Access to resources
like pages and such is governed by permissions in OFBiz, and roles are
used for record-level security (like which parties a user can
view/edit/etc as opposed to being able to use the view profile screen).
-David
