You are viewing a plain text version of this content. The canonical link for it is here.
Posted to user@ofbiz.apache.org by Sandeep Ray <sa...@gmail.com> on 2007/06/01 06:21:16 UTC

Re: Party specific security control

Hello,

Further to my previous note, looked at SharedOFBiz, but that too does not
seem like providing Party level security. Taking the travel company example
here is what I am looking to do.

Parent Company has a set of agents who are authorized to sell as 'Sales
Representative' and take orders. Parent Company should be able to see all of
these orders while each of the 'Sales Representative' should be able to
create, view and edit only their orders and not others.

With the default data set up (I created some Parties with Sales
Representative roles) all orders seem to be visible to everyone. Is there a
way to restrict it? If this is not supported OOTB, then I would very much
appreciate some design guidelines to implement this so that it can be
patched back to OFBiz if useful. I am very new to OFBiz and still not quite
familiar with all the moving pieces and therefore would really appreciate
some advice here

Thanks in advance
Sandeep


On 5/25/07, Sandeep Ray <sa...@gmail.com> wrote:
>
> Hi,
>
> I am very new to OFbiz (discovered it very recently). It is a treasure
> trove. :-)
>
> Have been dabbling with it for a brief while now and looking to learn more
> about security and access control. I am trying to work out a
> multi-organization hosted model scenario and as such would like to limit all
> users to their party related data only. For example an order Entry for a
> user 'User A' for Company 'A' should not be visible to 'userB' for
> 'CompanyB'. Exceptions could be if 'CompanyB' is the customer for the order,
> in which case 'userB'  should be able to see the same.
>
> I played around with some examples but couldn't get this kind of control..
> All orders created seem to be visible to ALL.
>
> Going through some of the documentation I found some reference to control
> based on Party.
> http://ofbizwiki.go-integral.com/Wiki.jsp?page=SecurityAdministration
>
> The above link seems to suggest Category #2 (Party-driven) as a feature,
> but can't figure out how it works..
>
> Would really appreciate if anyone has any inputs.
>
> Thanks
> Sandeep
> PS: Just started looking at SharedOFBiz to see if that throws up
> something.
>