Re: [MODERATE EMAIL] Re: OFBiz Documentation Team Volunteers Needed

[Sharan Foga]

Hi Rebecca

Welcome to our community!  Thank you for being interested in helping out with 
our documentation effort and I'll add you to the documentation team list. We 
have a wiki page setup at the link below

https://cwiki.apache.org/confluence/display/OFBIZ/OFBiz+Documentation+Team

So please take a look through it and come back with any questions.

BTW if you are still having issues with your installation, please give us more 
details so that we can help you. (Which version of OFBiz, What you process you 
used to install etc)

Thanks
Sharan


On 2018/03/16 06:22:03, Deepak Dixit  wrote: 
> Hi Rebecca Johnson,
> 
> Your email has been moderated, Please subscribe mailing list
> http://ofbiz.apache.org/mailing-lists.html
> 
> Thanks & Regards
> --
> Deepak Dixit
> www.hotwaxsystems.com
> www.hotwax.co
> 
> 
> -- Forwarded message --
> From: Rebecca Johnson 
> To: "user@ofbiz.apache.org" 
> Cc:
> Bcc:
> Date: Fri, 16 Mar 2018 05:48:06 +
> Subject: Re: OFBiz Documentation Team Volunteers Needed
> Count me in.
> 
> On 2018/02/08 10:04:57, Aditya Sharma  wrote:
>  > Hi Sharan,>
>  >
>  > Please count me in.>
>  >
>  > Thanks and Regards,>
>  >
>  > *Aditya Sharma* | Enterprise Software Engineer>
>  > HotWax Commerce  by HotWax Systems>
>  > >
>  >
>  > >
>  >
>  > On Thu, Feb 8, 2018 at 2:25 PM, Olivier Heintz <>
>  > holivier.li...@ofbizextra.org> wrote:>
>  >
>  > > Hi Sharan,>
>  > >>
>  > > please add me to the list,>
>  > >>
>  > > I have start to play with the new tools>
>  > > I have convert some docbook file to asciidoc with docbookrx tools
> and make>
>  > > modification on help data to use the html generated files in the
> ofbiz>
>  > > help, it's work's ;-)>
>  > > If needed, I can convert all docbook files to asccidoc>
>  > >>
>  > >>
>  > > Regards,>
>  > >>
>  > >>
>  > >>
>  > > Le 07/02/2018 à 14:32, Sharan Foga a écrit :>
>  > > > Hi Everyone>
>  > > >>
>  > > > (Trying again as my first post didn't reach this list)>
>  > > >>
>  > > > If you have read the latest project blog post then you will have
> seen a>
>  > > section about the discussions that have been happening on our
> development>
>  > > list about the new proposed OFBiz documentation framework.>
>  > > >>
>  > > > https://s.apache.org/VfxE>
>  > > >>
>  > > > It is based on asciidoc and will be able to generate
> documentation in>
>  > > various formats. This means that we can start to consolidate our
> OFBiz>
>  > > documentation within OFBiz itself and adapt it to any new releases.>
>  > > >>
>  > > > Feedback to the proposal have been very positive and once the
> code is>
>  > > moved into our current trunk we will need to start some
> documentation work.>
>  > > We will be looking for volunteers to become part of a documentation
> team>
>  > > that will work on reviewing the documents we already have in the
> wiki and>
>  > > other sources, then help to re-structure them to fit into the new>
>  > > documentation framework model.>
>  > > >>
>  > > > Being involved with documentation is a good way to learn OFBiz :-)>
>  > > >>
>  > > > So if you are interested in being part of the OFBiz documentation
> team>
>  > > then please respond to this message and I will add you to the list.>
>  > > >>
>  > > > Thanks>
>  > > > Sharan>
>  > > >>
>  > >>
>  > >>
>  >
> 

Re: Help with roles / security groups in a certain usage case

[Taher Alkhateeb]

Okay, then you bake the security into your services.

On Mar 16, 2018 12:02 PM, "Rajesh Mallah"  wrote:

> Thanks Jaqcues!. Shall go through it.
>
>
> @Taher
>
> The normal access to entities  shall be through XMLRPC or SOAP using
> certain 'login.username' and 'login.password' params . There shall
> be a layer of software which shall be doing the XMLRPC/SOAP
>
> I shall be restricting  the exposure of data by limiting
> the dataset by filtering the dataset to the linked data of current
> user .
>
> But i wanted that the real security should be imposed by OFBiz
> security system only so that if ever OOTB access is granted
> the information exposure is consistent.
>
> Shall discuss more after some self-study.
>
> regds
> mallah.
>
>
>
>
>
>
>
>
>
>
> On Fri, Mar 16, 2018 at 1:03 PM, Jacques Le Roux <
> jacques.le.r...@les7arts.com> wrote:
>
> > Short answer: did you read https://cwiki.apache.org/confl
> > uence/display/OFBIZ/OFBiz+Security+Permissions ?
> >
> > Jacques
> >
> >
> > Le 16/03/2018 à 08:03, Rajesh Mallah a écrit :
> >
> >> Hi ,
> >>
> >> I am trying to model multiple suppliers ( scale=1's)  and
> >> multiple buyers (scale=1's)  .
> >>
> >> Each supplier (a PartyGroup/Person)  shall have (its own) product
> >> categories ,
> >> products , store , warehouses  etc that is required to run his business.
> >>
> >> Each buyer (a PartyGroup or Person) shall have minimal of such entities
> >> and its role is limited to buying and creating financial transactions.
> >>
> >> Can anyone point me to useful documentation  that shall help me
> >> to create a set of permission / role assignment so that each of the
> stake
> >> holders are able to see only that much information which they are
> >> supposed to see. By "supposed" i mean the security accesses that
> >> are generally accepted , eg each supplier should be able to see only
> >> his products / its pricings  and all entities owned by him only.
> >>
> >> Please Note all the above *needs *to be preferably done under a single
> >> tenant.
> >>
> >> Also any direct guidance is also solicited.
> >>
> >> regds
> >> mallah.
> >>
> >>
> >
>

Re: Help with roles / security groups in a certain usage case

[Rajesh Mallah]

Thanks Jaqcues!. Shall go through it.


@Taher

The normal access to entities  shall be through XMLRPC or SOAP using
certain 'login.username' and 'login.password' params . There shall
be a layer of software which shall be doing the XMLRPC/SOAP

I shall be restricting  the exposure of data by limiting
the dataset by filtering the dataset to the linked data of current
user .

But i wanted that the real security should be imposed by OFBiz
security system only so that if ever OOTB access is granted
the information exposure is consistent.

Shall discuss more after some self-study.

regds
mallah.










On Fri, Mar 16, 2018 at 1:03 PM, Jacques Le Roux <
jacques.le.r...@les7arts.com> wrote:

> Short answer: did you read https://cwiki.apache.org/confl
> uence/display/OFBIZ/OFBiz+Security+Permissions ?
>
> Jacques
>
>
> Le 16/03/2018 à 08:03, Rajesh Mallah a écrit :
>
>> Hi ,
>>
>> I am trying to model multiple suppliers ( scale=1's)  and
>> multiple buyers (scale=1's)  .
>>
>> Each supplier (a PartyGroup/Person)  shall have (its own) product
>> categories ,
>> products , store , warehouses  etc that is required to run his business.
>>
>> Each buyer (a PartyGroup or Person) shall have minimal of such entities
>> and its role is limited to buying and creating financial transactions.
>>
>> Can anyone point me to useful documentation  that shall help me
>> to create a set of permission / role assignment so that each of the stake
>> holders are able to see only that much information which they are
>> supposed to see. By "supposed" i mean the security accesses that
>> are generally accepted , eg each supplier should be able to see only
>> his products / its pricings  and all entities owned by him only.
>>
>> Please Note all the above *needs *to be preferably done under a single
>> tenant.
>>
>> Also any direct guidance is also solicited.
>>
>> regds
>> mallah.
>>
>>
>

Re: About OFBiz Email Passwords Sending

[Arun Patidar]

Hello Jacques,

There are still some occurrences in the code for systemPropertyValue="".
This empty field should be removed to prevent data overridden. Added an
example data in the ticket  OFBIZ-10282





-- 
Thanks & Regards
---
Arun Patidar
Manager, Enterprise Software Development

www.hotwaxsystems.comwww.hotwax.co


On Fri, Mar 16, 2018 at 12:49 AM, Jacques Le Roux <
jacques.le.r...@les7arts.com> wrote:

> Sorry missed to say that it's on the dev ML
>
> Jacques
>
>
>
> Le 15/03/2018 à 18:28, Jacques Le Roux a écrit :
>
>> Hi Suraj,
>>
>> Before diving in this action, could you please check the thread
>> "Deprecate properties in favour of SystemProperties"
>>
>> Notably https://markmail.org/message/opldepaevls3y3ob
>>
>> Thanks
>>
>> Jacques
>>
>>
>> Le 15/03/2018 à 12:53, Suraj Khurana a écrit :
>>
>>> Hi Michael, Schumann,
>>>
>>> As per some recent code changes, there are many empty fields in data
>>> files
>>> which removes the data when some reader is again loaded into the system.
>>> Lets say I configured some email settings and mistakenly if ext reader is
>>> loaded again, that data will be corrupted and user is unaware of that.
>>>
>>> This ticket is created for changes regarding the same:
>>> https://issues.apache.org/jira/browse/OFBIZ-10282
>>>
>>> HTH.
>>>
>>> --
>>> Thanks and Regards,
>>> *Suraj Khurana* | Sr. Enterprise Software Engineer
>>> HotWax Commerce  by  HotWax Systems
>>> Plot no. 80, Scheme no. 78, Vijay Nagar, Indore, M.P. India 452010
>>>
>>>
>>>
>>>
>>>
>>> On Thu, Mar 15, 2018 at 4:14 PM, Michael Brohl >> >
>>> wrote:
>>>
>>> Hi Schumann,

 please have a look at the SystemProperty table. Currently the demo data
 loads some configuration for email so the changes in general.properties
 are
 partly overwritten in the configuration logic. Either change the
 database
 entries or remove them to use general.properties settings.

 Best regards,

 Michael Brohl
 ecomify GmbH
 www.ecomify.de


 Am 15.03.18 um 10:20 schrieb Schumann Ye:

 Dear Gurus,

> When I try to activate OFBiz Passwords Forget (Email Passwords
> function)
> in the Login webpage, I have got the following Error message:
>
> The Following Errors Occurred:
> Error occurred: unable to email password. Please try again later or
> contact customer service. (error was: [CON] Connection error when
> sending
> message to ***@hotmail.com from @
> outlook.com
> cc bcc subject New Password Sent (my own user login id)).
>
> What I have done in customizing the OFBiz Email Passwords is as
> follows:
>
> 1.  Update the fields (which are not null) From_Address, CC_Address
> and BCC_Address from tables ofbiz.product_store_email_setting and
> ofbiz.email_template_setting to sending email address
> **@
> outlook.com
>
> 2.  Modify the file general.properties as follows：
>   # -- general default 'fromEmailAddress' can be overridden in:
> EmailTemplateSetting
>   defaultFromEmailAddress=**@outlook.com
>
>   # -- mail notifications enabled (Y|N)
>   mail.notifications.enabled=Y
>
>   # -- redirect all mail notifications to this address for testing
>   #mail.notifications.redirectTo=
>
>   # -- the default mail server to use
>   mail.smtp.relay.host=smtp.office365.com
>
>   # -- SMTP Auth settings
>   mail.smtp.auth.user=**(my outlook mail name with
> the @outlook.com)
>   mail.smtp.auth.password=***(my outlook mailbox
> passwords)
>
>   # -- Additional Required Fields needed for Gmail and other non
> traditional smtp servers
>   # -- These added fields also work for Yahoo business mail for
> instance
>   # -- Gmail smtp port can be either 465 or 587
>   mail.smtp.port=587
>   # -- Gmail requires StartTLS
>   mail.smtp.starttls.enable=true
>
>   # -- Gmail requires a JSSE socket factory, the following
> socketFactory settings will override JavaMail's default socketFactory
> settings
>   # -- Port needs to be the same as mail.smtp.port
>   mail.smtp.socketFactory.port=587
> #mail.smtp.socketFactory.class=javax.net.ssl.SSLSocketFactory
>   #--Fallback [true|false] determines whether you will allow a non
> secure connection if you are unable to get a secure one
>   #mail.smtp.socketFactory.fallback=false
>
> 3.  Update the predefined fields from table ofbiz.system_property
> in
> mysql database as above shown in point 2.
> 4.  I also update the from_address from the preset mailbox to my
> outlook mailbox in the moduel Ecommerce (applications/securityext/data
> /UserDemoData.xml),
> although this is not necessary 

Re: Help with roles / security groups in a certain usage case

[Taher Alkhateeb]

Hi Rajesh,

I think what you are looking for is row-level security (restricted database
records) not user interface security [1].

So your restrictions are more-or-less queries against the user login to
check if the party of logged in user has a certain role.

Essentially, the screens that you want to design with these restrictions
should check in ... if roles-to-entities exist and then
display related records.

[1]
https://cwiki.apache.org/confluence/display/OFBIZ/OFBiz+Security+Permissions#OFBizSecurityPermissions-Atrecordlevel,byusingRolelimitedpermissionsorrelatedmeans

On Mar 16, 2018 10:04 AM, "Rajesh Mallah"  wrote:

> Hi ,
>
> I am trying to model multiple suppliers ( scale=1's)  and
> multiple buyers (scale=1's)  .
>
> Each supplier (a PartyGroup/Person)  shall have (its own) product
> categories ,
> products , store , warehouses  etc that is required to run his business.
>
> Each buyer (a PartyGroup or Person) shall have minimal of such entities
> and its role is limited to buying and creating financial transactions.
>
> Can anyone point me to useful documentation  that shall help me
> to create a set of permission / role assignment so that each of the stake
> holders are able to see only that much information which they are
> supposed to see. By "supposed" i mean the security accesses that
> are generally accepted , eg each supplier should be able to see only
> his products / its pricings  and all entities owned by him only.
>
> Please Note all the above *needs *to be preferably done under a single
> tenant.
>
> Also any direct guidance is also solicited.
>
> regds
> mallah.
>

Re: Help with roles / security groups in a certain usage case

[Jacques Le Roux]

Short answer: did you read 
https://cwiki.apache.org/confluence/display/OFBIZ/OFBiz+Security+Permissions ?

Jacques


Le 16/03/2018 à 08:03, Rajesh Mallah a écrit :

Hi ,

I am trying to model multiple suppliers ( scale=1's)  and
multiple buyers (scale=1's)  .

Each supplier (a PartyGroup/Person)  shall have (its own) product
categories ,
products , store , warehouses  etc that is required to run his business.

Each buyer (a PartyGroup or Person) shall have minimal of such entities
and its role is limited to buying and creating financial transactions.

Can anyone point me to useful documentation  that shall help me
to create a set of permission / role assignment so that each of the stake
holders are able to see only that much information which they are
supposed to see. By "supposed" i mean the security accesses that
are generally accepted , eg each supplier should be able to see only
his products / its pricings  and all entities owned by him only.

Please Note all the above *needs *to be preferably done under a single
tenant.

Also any direct guidance is also solicited.

regds
mallah.

Help with roles / security groups in a certain usage case

[Rajesh Mallah]

Hi ,

I am trying to model multiple suppliers ( scale=1's)  and
multiple buyers (scale=1's)  .

Each supplier (a PartyGroup/Person)  shall have (its own) product
categories ,
products , store , warehouses  etc that is required to run his business.

Each buyer (a PartyGroup or Person) shall have minimal of such entities
and its role is limited to buying and creating financial transactions.

Can anyone point me to useful documentation  that shall help me
to create a set of permission / role assignment so that each of the stake
holders are able to see only that much information which they are
supposed to see. By "supposed" i mean the security accesses that
are generally accepted , eg each supplier should be able to see only
his products / its pricings  and all entities owned by him only.

Please Note all the above *needs *to be preferably done under a single
tenant.

Also any direct guidance is also solicited.

regds
mallah.