Orbeon Forms community mailing list

form builder permissions empty drop-down

classic Classic list List threaded Threaded
1 message Options
koenvdk
Reply | Threaded
Open this post in threaded view
|

form builder permissions empty drop-down

koenvdk
Hello,

We're trying to do form builder authentication (in 3.9.1).

I'm trying to do the following:

A role "form-builder" is needed to access fr/orbeon/builder/*
A role "orbeon-admin" can do anything, among which edit forms in the test app
A role "cbpl-builder" can edit all forms with the "cbpl" app

To do this, I edited web.xml:
<security-constraint>
        <web-resource-collection>
            <web-resource-name>Orbeon Builder</web-resource-name>
            <url-pattern>/fr/orbeon/builder/*</url-pattern>
        </web-resource-collection>
        <auth-constraint>
            <role-name>form-builder</role-name>
        </auth-constraint>
</security-constraint>
<security-role>
        <role-name>form-builder</role-name>
 </security-role>
...

There is some other security stuff in there, but nothing that should interfere with the builder. I also added the other two roles using security-role


This is what's in my form-builder-permissions.xml file (the first try, I skipped the middle line):
<?xml version="1.0" encoding="utf-8"?>
<roles>
    <role name="orbeon-admin"   app="*"    form="*"/>
    <role name="orbeon-admin"   app="test"    form="*"/>
    <role name="cbpl-builder"        app="cbpl" form="*"/>
</roles>


And In my properties-local.xml file:

<property as="xs:string"        name="oxf.fr.authentication.method"        value="container"/>
<property as="xs:string"        name="oxf.fr.authentication.container.roles" value="orbeon-admin cbpl-admin cbpl-builder form-builder"/>
   

And I've even added all the roles I'm using to model.xpl in the java authentication app.


What am I forgetting? I haven't tested everything yet, but when I log in with a user who has the roles "orbeon-admin" and "form-builder", I do get access to the form builder, and I see all forms in the summary, but when I make a new form, I get an empty dropdown-list in the pop-up to choose my app from, thus making it impossible to make any new forms.

If I remove form-builder-permissions, this has no effect. Another thing I notice: I can edit an exisiting form, but I see no controls in the builder!. Trying to save the form looks to work, until I reload and nothing changed. In the logs, I see ValidationExceptions flying by. Weird...



Sincerely,




Koen Vanderkimpen

Connect: Twitter







Overeenkomstig de bepalingen inzake de vertegenwoordiging van de vzw in haar statuten, kan enkel de gedelegeerde bestuurder, de algemeen directeur of zijn uitdrukkelijke lasthebber verbintenissen aangaan namens Smals.
Indien dit bericht niet voor u bestemd is, verzoeken wij u dit onmiddellijk aan ons te melden en het bericht te vernietigen.

Conformément aux dispositions relatives à la représentation de l'asbl dans ses statuts, seul l'administrateur délégué, le directeur général ou son mandataire exprès est habilité à souscrire des engagements au nom de Smals.
Si ce message ne vous est pas destiné, nous vous prions de nous le signaler immédiatement et de détruire le message.

According to the provisions regarding representation of the non profit association in its bylaws, only the chief executive officer, the general manager or his explicit agent can enter into engagements on behalf of Smals.
If you are not the addressee of this message, we kindly ask you to signal this to us immediately and to delete the message.




--
You receive this message as a subscriber of the [hidden email] mailing list.
To unsubscribe: mailto:[hidden email]
For general help: mailto:[hidden email]?subject=help
OW2 mailing lists service home page: http://www.ow2.org/wws
Free forum by Nabble Edit this page