Uploaded image for project: 'Causeway'
  1. Causeway
  2. CAUSEWAY-2614

productionise secman a bit more (finish off ImpersonsateUserAdvisor)

    XMLWordPrintableJSON

Details

    • Improvement
    • Status: Closed
    • Minor
    • Resolution: Fixed
    • 2.0.0-M5
    • 2.0.0-M6
    • Ext Sec Secman
    • None

    Description

      DONE: use abstract superclasses, single layout

      FIXED: don't allow user to see their permissions.

      FIXED: veto viewing only disables (eg ApplicationUser#addRole or #lock actions for a regular user).

      FIXED:

      • accidentally created two roles with the same identifier.  This resulted in no fixtures being seeded.  My guess is there was an unlogged SQL exception.

       

      public class RoleAndPerms__UserRw extends AbstractRoleAndPermissionsFixtureScript {
      
        public RoleAndPerms__UserRw() {
          super("user-rw", 
                "Read-write access to entire application");   
        }
        // ... 
      } 

      and (by mistake)...

      public class RoleAndPerms__UserRo extends AbstractRoleAndPermissionsFixtureScript {
      
        public RoleAndPerms__UserRo() {
          super("user-rw",                                    <<<<< my mistake was here
                "Read-only access to entire application");   
        }
        // ...
      }

       

       

       

      DONE - update the @Configuration's, make sure they declare the correct services

      DONE (enough) - update the docs (pre- and post- hooks etc).

       

      specifically:

      • DONE - clean-up @Configuration imports and service definitions (so there is less config needed for framework user)
      • DONE - clean-up layouts.
      • DONE - write missing documentation on how to configure

       

       

      Attachments

        Issue Links

          Activity

            People

              danhaywood Daniel Keir Haywood
              danhaywood Daniel Keir Haywood
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: