I have a page of my website..
In that page I have a registration forms and videos and some text...
When I register in registration page and then come back to this page already registered, then registration box disappears..
It looks I have left my rendered tags set to hide the reg form if they are logged in.
Code I am using for that --
<c:HomePageRightReglanding rendered="{!ISPICKVAL($User.UserType,'Guest')}" />
HomePageRightReglanding my component name where I have form to display ...
Please help me out !!
The user to access a public site who user type is guest, but if you have registered, the user type will be change.
The user type is depended on user license.
The category of user license. Each UserType is associated with one or more UserLicense records. Each UserLicense is associated with one or more profiles. In API version 10.0 and later, valid values include:
Standard: user license. This user type also includes Salesforce Platform and Salesforce Platform One user licenses. Label is Standard.
PowerPartner: PRM user whose access is limited because he or she is a partner and typically accesses the application through a partner portal. Label is Partner.
CSPLitePortal: user whose access is limited because he or she is an organization's customer and accesses the application through aCustomer Portal. Label is High Volume Portal.
CustomerSuccess: user whose access is limited because he or she is an organization's customer and accesses the application through a Customer Portal. Label is Customer Portal User.
PowerCustomerSuccess: user whose access is limited because he or she is an organization's customer and accesses the application through a Customer Portal. Label is Customer Portal Manager.
Users with this license type can view and edit data they directly own or data owned by or shared with users below them in the Customer Portal role hierarchy.
Related
We have 3 people that need access to our Azure B2C portal pages. How granular are the permissions on the Profile page and All Users page?
We want to restrict the visibility of a User's first name and last name to a single administrator.
Can the User "Profile" page be restricted whilst the "All Users" page is still available to the whole admin team?
Is it possible to set visibility controls on specific fields? That would allow us to have the Profile page available but the fname and lname as hidden fields.
You cannot control the visibility of the fields in the Azure Portal in this way. Yuo can only control which fields can be modified based on the Azure AD Admin role of the user.
The only option to provide more granular access would be to surface your own Admin tool built on top of the MS Graph API.
Or there maybe a solution which a partner offers.
This is mostly playing around at the moment but I'm attempting to use Azure AD B2C as the login provider / user store for a website I'm working on.
I want to limit what users can access based on a user level.
At the moment, in order to handle this I have a database entry for UserLevel that stores the users OID, and an enum for the user level (admin, moderator, user etc) and then for page / api access I've set up a requirement that checks the authenticated user is in the UserLevel repository, and that their level matches, or exceeds the required level.
What I'm wondering is if there are any major problems with doing things this way / is there a better way to handle this.
You can use Custom Attributes to save all your User properties - it will act like DB columns in B2C.
How to create?
Navigate to the directory that contains your B2C tenant.
Choose All services in the top-left corner of the Azure portal, search for and select Azure AD B2C.
Select User attributes, and then select Add.
Provide a Name for the custom attribute (for example, UserLevel)
Choose a Data Type as String (Note that only String, Boolean, and Int are available).
Optionally, enter a Description for informational purposes.
Click Create.
The custom attribute is now available in the list of User attributes and for use in your user flows.
How to use in your User Flows?
In your Azure AD B2C tenant, select User flows.
Select your policy (for example, "B2C_1_SignupSignin") to open it.
Select User attributes and then select the custom attribute (for example, UserLevel). Click Save.
Select Application claims and then select the custom attribute.
Click Save.
You should now see UserLevel in the list of attributes collected during the sign-up journey, and see it in the token sent back to your application - based on which you will be able to identify the access you want to give to that user (instead of making another DB call which will increase latency).
We have a Kentico 10 website using custom WIF authentication. That is all working fine. I can see that the authenticated user details match what is expected.
I tried enabling the online marketing - contact tracking and then discovered that even though I had logged out with one account and then logged in with another account the new user's activity was being logged as if the first user had performed it.
The only that works reliably is using a delete cookie plugin in chrome which isn't a good solution for production.
I tried expiring the existing cookies for the domain and then found after logging out and back in again with a new user that all the new activity was being logged as public anonymous user.
Is there anything I can add to signout or login to ensure that the correct Contact is being tracked against. Different users should be able to use the same browser logging out and back in again without this contact activity going against the wrong person.
The contact cookie is stored per user account on a computer. So if you're simply logging in and out of Kentico this activity will not change your contact cookie. Kentico sees you as the same contact even though you are authenticating with a different user account.
Kentico Contacts and Users are not synonymous although they can have a link to one another. So I'd expect if the user account with linked with a contact you may see different activity for that particular contact. The only way a contact is linked to a user account is if one of the 3 activities happen:
Registers on a website
Signs in with a user account
Fill in customer data while making a purchase
So even though you're doing #2, I'm guessing something unique is happening since you're doing some testing on the local machine. Check out the documentation about contacts and linking to user accounts. To test or see if a user is linked to a contact, go to Contact Management, manage a contact and click on the Membership>Users tab. If see a user account linked to the contact then that contact is linked. If you don't see one then that particular contact is not linked and you'll experience the issues you're explaining.
I am trying to assign an Business account to an user and not able to figure out how to do it.
I believe you are trying to customize Catalog form (SP700000) on Acumatica Portal site and getting Your user profile is not associated with any Business Account message.
Associated business account check is done in constructor of the InventoryLineMaint Graph linked to this page and if not found; exception is raised which is correct by design. And that’s the reason you are seeing this message.
To customize this screen using Acumatica Customization Browser, you should create an admin Portal user who is associated with business account.
Allow roles Customizer and Portal Admin for External User Type. You need to check Guest Role for these two in order to add here.
Step # 1
Login to ERP using admin credential, navigate to User Roles screen (SM201005), and check Guest Role for Customizer and Portal Admin roles in order to add them on EP202500.
Step # 2
Now navigate to User Types screen (EP202500), and select External User Type. Modify to allow roles Customizer and Portal Admin for External User Type.
Step # 3
Now create External user.
Navigate to Customers Screen (AR303000) and select ABARTENDE customer. Go to Contacts tab and open up existing Contact - Kabuk Fadi, Mr. (CR302000) Navigate to User Info tab and setup External user as below.
Step # 4
Now login to Portal site using this user. You should be able to customize page SP700000 via Acumatica Customization Browser.
I'm building a sitecore 7.2 using asp.net MVC 5.0. The site will have login and each user will be roles.
We need to show/hide the site menu items based on logged in user Roles. The user detail and roles are stored in SAP backend.
Could someone please advise what's the best way to achieve above?
Essentially you will want to map the roles stored in your backend system to Sitecore Roles. Potentially look into creating a custom Role Provider (see in document below)
Once logged in, requests are made to Sitecore are made in context of that logged in user. Therefore if the user, or their role, does not have permission to view an Item, it will not be returned in the request. This effect means that your Menu will not display items they do not have permission to access.
You and Content Editors can control what users and roles can access via the Security Editor and view their access rights via the Access Viewer in the Content Editor.
This documents will have everything you need - http://sdn.sitecore.net/upload/sitecore6/sc61keywords/security_api_cookbook_usletter.pdf
http://sdn.sitecore.net/upload/sitecore6/securityadministratorscookbook-usletter.pdf
Its also worth noting that Sitecore's seucirty manages roles as Ors. So if one of the user's role has permission to see an Item, then the user can see it.
If you require the roles to be Ands; every role must have permission before its displayed to the user, check this post out - http://www.sitecore.net/learn/blogs/technical-blogs/john-west-sitecore-blog/posts/2015/03/require-membership-in-multiple-roles-in-the-sitecore-aspnet-cms.aspx
You need the roles for the current user from SAP? There is an Odata API for that: http://help.sap.com/saphelp_nw73ehp1/helpdata/en/4c/5bde6197817511e10000000a42189b/content.htm
You could query the API in real-time, but it would of course require a login to SAP for the current user.
Or - you could use another API and connect via a service user.