Forums

Covering OroCommerce, OroCRM, OroPlatform topics, including community updates and company announcements.

Starting from March 1, 2020 the forum has been switched to the read-only mode. Please head to StackOverflow for support.

Forum Replies Created

Viewing 8 replies - 1 through 8 (of 8 total)
  • Author
    Replies
  • in reply to: Multiple Field Ownership #28055

    seddonm1
    Participant

    Thank you Dima.

    I have built a voter which allows this permission if I create a new role like ‘Account Maintainer’ and give ‘System’ permission then override the permission with the custom voter.

    In doing so, I have found a defect with the query builder relating to how the permission SQL is generated:
    https://github.com/orocrm/crm/issues/48

    Cheers,
    Mike

    in reply to: Multiple Field Ownership #28053

    seddonm1
    Participant

    Hi,
    Maybe what I am referring to is the SHARE functionality listed in your security module as coming soon:

    **SHARE**: Controls whether the user can share a record with another user.
    `*` **NOTE: SHARE functionality isn’t implemented yet, so SHARE permissions are not used**

    This seems to describe the solution:
    **User**: Allows to gives a user a permissions to access to own records and records that are shared with the user.

    This way the owner of the record could ‘share’ the specific account record with the new user?

    Cheers,
    Mike

    in reply to: Multiple Field Ownership #28052

    seddonm1
    Participant

    Hi Dima,
    Sorry, my description wasn’t clear.

    Is is possible to have two (or more) owners for one account without using the business unit/division/organisation model?

    Scenario:
    1. I am a Sales Manager and I create an account. Therefore my user is the owner (user_owner_id).
    2. I add a contact to that account. I also create a userid for that contact to the system so they can login.
    3. I want to remain as the owner of the account but want the new userid to be able to edit the account too – but ONLY the account they are joined to.

    Hopefully that is better?

    Cheers,
    Mike

    in reply to: AddressBundle\Entity\AbstractAddress __toString() #33346

    seddonm1
    Participant

    Thanks Yevhen.

    in reply to: OroPlatform / OroCRM Beta 3 Feedback #34775

    seddonm1
    Participant

    Hi guys,
    Thanks for the responses and both of them make sense (so much caching makes it a bit hard to debug sometimes!).

    Are you able to respond to the other points (particularly the horizontal vs vertical menu)?

    Also, where is your working github repository as it seems you only update the public ones when you issue a new beta. I say this because when I find a defect I like to check the repository to see if any changes have been made to this file so I don’t need to report it until the next version.

    I think the product you are building is going to be really awesome once it is finished so hopefully I can help by testing (at the very least).

    in reply to: How to access REST API using API Key #35581

    seddonm1
    Participant

    Thanks asmaga.

    I have got it working. I was sending the user password which, in hindsight, makes no sense because it could (relatively) easily be brute force attacked if a hacker captured the messages. The API Key is much more complex and offers very good security. I had also forgotten to regenerate the API Key after the reinstall.

    Thanks for your help and great work.

    Cheers,
    Mike

    in reply to: How to access REST API using API Key #35579

    seddonm1
    Participant

    Thanks asmaga.

    I have just completely rebuilt my environment from the latest git (BETA 2).

    I am still struggling to use the REST API.

    Today, whilst playing with a semi-upgraded OroCRM, I managed to get one response by sending a null nonce.

    With the upgraded installation and using this site to generate the WSSE header it is still not working.
    http://www.teria.com/~koseki/tools/wssegen/

    Maybe that site is generating incompatible headers (changed algorithm). Are you able to generate a WSSE header and successfully retrieve /api/rest/current/contacts.json with it?

    I have also tried setting: nonce_dir: “%kernel.root_dir%/cache/nonce” and can see the nonce files in that path so it is receiving the data correctly just failing authentication.

    Cheers,
    Mike

    in reply to: How to access REST API using API Key #35577

    seddonm1
    Participant

    Thanks asmaga.

    I have used an online javascript wsse generator and used Chrome Advanced Rest Client to call them.

    I have done some testing and found if I call this one (for example):
    http://localhost/api/rest/current/contacts.json

    If I pass a malformed X-WSSE I get a 401 Unauthorised response: ‘Response does not contain any data.’ This is the correct behaviour.

    If I call the same interface with a correctly formatted X-WSSE header e.g.:
    UsernameToken Username=”admin”, PasswordDigest=”ku+0N+DYrfnY6RntxilDPQ8kzwA=”, Nonce=”NTBiYTNhZDk5ZjRiNGM2MQ==”, Created=”2013-10-29T17:05:11Z”

    I receive this warning back:
    <b>Warning</b>: Missing argument 5 for Escape\WSSEAuthenticationBundle\Security\Core\Authentication\Provider\Provider::validateDigest() on line 45

    Argument 5 is:
    $this->getSecret($user)

    Which calls:
    protected function getSecret($user)
    {
    return $user->getPassword();
    }

    When I look at the code I can see that my IDE (PhpStorm) thinks that the getPassword() method is not defined.

    Have you managed to actually call one of these interfaces?

    Cheers

Viewing 8 replies - 1 through 8 (of 8 total)
Back to top