-
Type:
Story
-
Status: Closed (View Workflow)
-
Priority:
Critical
-
Resolution: Fixed
-
Affects Version/s: 0.14 swallows
-
Fix Version/s: 0.18 Swallows, 1.5 Swallows, 1.4 Swallows
- A login window should be created (might be a popup).
- All the pages inside Poulpe should have restricted access.
- When a user logs in, we should first check whether there are such credentials in the database (JCommune table structure should be used for these purposes), then we have to check whether the user has specific permissions:
- User should be assigned with at least one component in the ACL. She should have admin rights for the component. You can figure this out by what groups this user is in: if he is present in a group that has admin rights on the component, then she can be logged in.
- Some Spring Security researches should be carried out - we need to find a place where it's better to check for ACL permissions.
- blocks
-
POULPE-362 User that was deleted from admin group stay logged in
-
- Open
-
-
-
- Open
-
- relates to
-
-
- Closed
-
1.
|
Create a log in form |
|
Closed | Julia Atlygina |
|
|||||||
2.
|
Authorization. Check whether user has enough permissions to log in |
|
Closed | Ilya Zhulanov |
|
|||||||
3.
|
Create a migration with default admin user |
|
Closed | Julia Atlygina |
|
