https://connect.hyland.com/t5/alfresco-forum/authorization-in-activiti-explorer/m-p/31334#M13281 <HTML><HEAD></HEAD><BODY><P>Yes, I also looked at that class, but it has only one method (initButtons) &nbsp;checking if user is an admin then display the manage button. It is not enough for the whole authentication/authorization system. I couldn't find any pieces of code to check if user have enough privileges to access to an area/function or not?&nbsp;</P></BODY></HTML> Tue, 18 Jul 2017 10:44:17 GMT duke_duong 2017-07-18T10:44:17Z https://connect.hyland.com/t5/alfresco-forum/authorization-in-activiti-explorer/m-p/31331#M13278 I am exploring the Activiti Explorer 5.22, and I can not find out how to change the authorization configuration for it (e.g which user can access which part of the system). Anyone can help me on this problem? Thanks.Duke. Fri, 14 Jul 2017 09:49:46 GMT https://connect.hyland.com/t5/alfresco-forum/authorization-in-activiti-explorer/m-p/31331#M13278 duke_duong 2017-07-14T09:49:46Z https://connect.hyland.com/t5/alfresco-forum/authorization-in-activiti-explorer/m-p/31332#M13279 <HTML><HEAD></HEAD><BODY><P>I just found the DefaultLoginHandler class to process the authentication on login. But I couldn't find the source code for checking the authentication/authorization after logging in? No one can help me on this?</P></BODY></HTML> Tue, 18 Jul 2017 07:33:50 GMT https://connect.hyland.com/t5/alfresco-forum/authorization-in-activiti-explorer/m-p/31332#M13279 duke_duong 2017-07-18T07:33:50Z https://connect.hyland.com/t5/alfresco-forum/authorization-in-activiti-explorer/m-p/31333#M13280 <HTML><HEAD></HEAD><BODY><P>My impression is that access to sections based on user role is&nbsp;done in code rather configuration. See for example&nbsp;<A class="link-titled" href="https://github.com/Activiti/Activiti/blob/5.x/modules/activiti-explorer/src/main/java/org/activiti/explorer/ui/mainlayout/MainMenuBar.java#L103" title="https://github.com/Activiti/Activiti/blob/5.x/modules/activiti-explorer/src/main/java/org/activiti/explorer/ui/mainlayout/MainMenuBar.java#L103" rel="nofollow noopener noreferrer">Activiti/MainMenuBar.java at 5.x · Activiti/Activiti · GitHub</A>&nbsp;</P></BODY></HTML> Tue, 18 Jul 2017 10:14:04 GMT https://connect.hyland.com/t5/alfresco-forum/authorization-in-activiti-explorer/m-p/31333#M13280 ryandawson 2017-07-18T10:14:04Z https://connect.hyland.com/t5/alfresco-forum/authorization-in-activiti-explorer/m-p/31334#M13281 <HTML><HEAD></HEAD><BODY><P>Yes, I also looked at that class, but it has only one method (initButtons) &nbsp;checking if user is an admin then display the manage button. It is not enough for the whole authentication/authorization system. I couldn't find any pieces of code to check if user have enough privileges to access to an area/function or not?&nbsp;</P></BODY></HTML> Tue, 18 Jul 2017 10:44:17 GMT https://connect.hyland.com/t5/alfresco-forum/authorization-in-activiti-explorer/m-p/31334#M13281 duke_duong 2017-07-18T10:44:17Z https://connect.hyland.com/t5/alfresco-forum/authorization-in-activiti-explorer/m-p/31335#M13282 <HTML><HEAD></HEAD><BODY><P>Is the situation&nbsp;that the explorer doesn't do the level of authorization checking that you're expecting or that it does do it and you're not sure how to configure it? I presume there are particular use-cases you have in mind beyond restricting admin-only operations. I presume you're also aware of the new UI in v6 (<A class="link-titled" href="https://github.com/Activiti/Activiti/tree/6.0-release/modules/activiti-ui" title="https://github.com/Activiti/Activiti/tree/6.0-release/modules/activiti-ui" rel="nofollow noopener noreferrer">Activiti/modules/activiti-ui at 6.0-release · Activiti/Activiti · GitHub</A>&nbsp; - for the equivalent checks in the new UI you could look at <A class="link-titled" href="https://github.com/Activiti/Activiti/blob/6.0-release/modules/activiti-ui/activiti-app-logic/src/main/java/org/activiti/app/security/SecurityUtils.java" title="https://github.com/Activiti/Activiti/blob/6.0-release/modules/activiti-ui/activiti-app-logic/src/main/java/org/activiti/app/security/SecurityUtils.java" rel="nofollow noopener noreferrer">Activiti/SecurityUtils.java at 6.0-release · Activiti/Activiti · GitHub</A>&nbsp;).</P></BODY></HTML> Tue, 18 Jul 2017 11:52:04 GMT https://connect.hyland.com/t5/alfresco-forum/authorization-in-activiti-explorer/m-p/31335#M13282 ryandawson 2017-07-18T11:52:04Z https://connect.hyland.com/t5/alfresco-forum/authorization-in-activiti-explorer/m-p/31336#M13283 <HTML><HEAD></HEAD><BODY><P>I think it has the authorization feature at my expected level (for example, when a normal user access the area which is dedicated for admin, it is denied or goes to login screen), but I couldn't find the code for that feature. In the case I want to add more security roles and assign the secured resources/areas for them, I don't know how to change the code.</P><P></P><P>For the new UI in version 6.0, I need more time to explore it. For now, we need to use the old version for the current work.</P><P></P><P>Thanks,</P><P>Duke.&nbsp;</P></BODY></HTML> Tue, 18 Jul 2017 16:02:03 GMT https://connect.hyland.com/t5/alfresco-forum/authorization-in-activiti-explorer/m-p/31336#M13283 duke_duong 2017-07-18T16:02:03Z