Hi all, We can not check 'AppOwner' role at the front end only, what if we do a REST call and invoke delete?
@Nirmal, All roles are read from appfactory.xml, however AppOwner is the set of users who create applications, invite other users into different roles such as Developer, DevOps etc. When AppOwner invite another user, he can modify existing roles assigned to users, for example, AppOwner can remove QA role and add DevOp role for a DevOps user. The issue here is that, AppOwner should not be able to reomve himself from AppOwner role. That is why, the suggestion to add DELETABLE property to each role. thank you. On Mon, May 6, 2013 at 10:21 PM, Nirmal Fernando <nir...@wso2.com> wrote: > Asanka, > > Sent via my mobile > -- Nirmal -- > > On May 6, 2013 8:21 PM, "Asanka Dissanayake" <asan...@wso2.com> wrote: > > > > Hi All, > > > > In App Factory application roles are defined in the appfactory.xml. > According to the present situation there are following roles defined. > > -Application Owner > > -Developer > > -QA > > -DevOps > > > > Each role has different permissions. From these roles Application Owner > is very important. > > Application owner MUST not be able to delete. (ATM if the application > owner is deleted then the application becomes inaccessible ). > > > > To avoid deleting the appowner ,now delete button is hidden in the UI. > to accomplish this task appOwner is hard coded and compared. If user > changed the role name of the app owner in the appfactory.xml, this does not > work. > > > > to avoid this there may be following options. > > > > -declare a property called DELETABLE > > -or else we can give a UI to edit the content of the appfactory.xml and > hide certain things we want such as app owner etc.. (If we provide this we > should not allow user to open appfactory.xml directly) > > > > Isn't it better to read the app owner role from appfactory.xml always ? > > I don't understand why you need any additional properties. > > > > > > > > > > -- > > > > Asanka Dissanayake > > Software Engineer > > WSO2 Inc. - lean . enterprise . middleware | wso2.com > > > > email: asan...@wso2.com, blog: cyberwaadiya.blogspot.com, > asankastechtalks.wordpress.com mobile: +94 71 8373821 > > > > _______________________________________________ > > Dev mailing list > > Dev@wso2.org > > http://wso2.org/cgi-bin/mailman/listinfo/dev > > > > -- Manjula Rathnayaka Software Engineer WSO2, Inc. Mobile:+94 77 743 1987
_______________________________________________ Dev mailing list Dev@wso2.org http://wso2.org/cgi-bin/mailman/listinfo/dev
