掲示板

  1. ホーム
  2. Development
  3. portlet access control by user role

portlet access control by user role

12年前 に shahab mahtab によって更新されました。

portlet access control by user role

New Member 投稿: 5 参加年月日: 11/12/13 最新の投稿
Hi:

I would like to grant access to a portlet ("add to page" and "view") based on few custom roles only, which are imported from LDAP.
I have defined the roles in portlet.xml and liferay-portlet.xml of the portlet.

However, it looks like any user can view the portlet. What is the correct way to enforce it?

I have tried adding the permission file (resource-actions\....xml). I can restrict guests from viewing the portlet this way. But, it looks like "resource-action-mapping" DTD does not support custom roles.

Is there a way to enfore role based access control without using the built-in Permissions GUI?

Thanks.
thumbnail
12年前 に David H Nebinger によって更新されました。

RE: portlet access control by user role

Liferay Legend 投稿: 14916 参加年月日: 06/09/02 最新の投稿
Sure...

Drop the portlet on the page, go to the configuration page for the portlet, to the permissions tab, and set the permissions there. Disable guest perms on the portlet, and you should be golden...
12年前 に shahab mahtab によって更新されました。

RE: portlet access control by user role

New Member 投稿: 5 参加年月日: 11/12/13 最新の投稿
Hi:

Can I configure it from any configuration file other than the "Permissions" tab?

Thanks
thumbnail
11年前 に Mauro Almeida によって更新されました。

RE: portlet access control by user role

Junior Member 投稿: 32 参加年月日: 12/03/15 最新の投稿
Hi Shahab.

Did you manage to overcome this?

Best regards,
MJA
thumbnail
11年前 に Thomas Berg によって更新されました。

RE: portlet access control by user role

Regular Member 投稿: 131 参加年月日: 09/09/07 最新の投稿
Hello Shahab,
You should be able to achieve what you need by reading the information in this thread

HTH

Regards / Thomas
11年前 に shahab mahtab によって更新されました。

RE: portlet access control by user role

New Member 投稿: 5 参加年月日: 11/12/13 最新の投稿
Hi HTH,

I believe, resource-action-mapping takes some pre-defined roles only (guest, community etc.). I ended up writing a filter to checks user's role, and show appropriate message if user is not authorized.

My use case is slightly different. Users are accessing some pre-configured pages with bunch of portlets, and they can view portlets that they are entitled to. (users' entitlement can change dynamically)

Thanks
Shahab
9年前 に Pablo Martin によって更新されました。

RE: portlet access control by user role

New Member 投稿: 5 参加年月日: 15/01/20 最新の投稿
Hi,

I have 2 instances on my liferay
and some portlets deployment and list of portlets in dockbar on adding cannot be seen to another neither the administrator of the another instance.

create a hook to some .jsp is it good ?
How i suppose to do that?

Regards,
Pablo M.