Kuali Rice Development
  1. Kuali Rice Development
  2. KULRICE-8975

KRAD AuthZ does not have hooks for actions based on failed authorization

    Details

    • Type: Improvement Improvement
    • Status: Open Open
    • Priority: Major Major
    • Resolution: Unresolved
    • Affects Version/s: 2.2
    • Fix Version/s: Backlog
    • Component/s: Development
    • Security Level: Public (Public: Anyone can view)
    • Labels:
    • Similar issues:
      KULRICE-8782KRAD AuthZ is difficult to extend
      KULRICE-5371Uif Framework - Collections: Hook in authorization
      KULRICE-1048Add support for Role-based authorization
      KULRICE-548Add Role-based authorization the the existing KNS authZ framework
      KULRICE-9970Add Hook to DD for processing beans prior to validation
      KULRICE-7481Failing to load the EBO based on the stateCode and zipCode
      KULRICE-6881Unable to customize document search results based on criteria
      KULRICE-3728Storage of hasApplicationRole results for workflow-based roles
      KULRICE-11809IT Failure RollbackExceptionErrorReportingTest save method should have failed
      KULRICE-5473Rice Dev: KRAD Author Lookup
    • Rice Module:
      KRAD
    • KRAD Feature Area:
      UIF MVC
    • Application Requirement:
      KS
    • KAI Review Status:
      Not Required
    • KTI Review Status:
      Not Required

      Description

      In KS we sometimes have the requirement to display messages to the user as to why they do not have access to a particular view/section. There are no hooks in
      ViewHelperServiceImpl.applyAuthorizationAndPresentationLogic for custom code to execute/or growl messages to be displayed to the user when access is denied.
      Some possible solutions could be a view.setisAuthorizedView(false) or group.setIsAuthorizedView(false); or a configuration to allow for messages to be relayed to the user if authorization fails for specific elements.

        Activity

        Hide
        Jessica Coltrin (Inactive) added a comment -

        Hey Dan, if this is higher priority for KS than the backlog, please up the priority to critical and assign back to me and I'll get it into a milestone.

        Show
        Jessica Coltrin (Inactive) added a comment - Hey Dan, if this is higher priority for KS than the backlog, please up the priority to critical and assign back to me and I'll get it into a milestone.
        Hide
        Larry Symms added a comment -

        workaround exists that requires overriding krad config.

        Show
        Larry Symms added a comment - workaround exists that requires overriding krad config.
        Hide
        Jessica Coltrin (Inactive) added a comment -

        per Larry, this can be deferred from 2.3.

        Show
        Jessica Coltrin (Inactive) added a comment - per Larry, this can be deferred from 2.3.
        Hide
        Brian Smith (Inactive) added a comment -

        Can you supply the workaround please, this would help

        Show
        Brian Smith (Inactive) added a comment - Can you supply the workaround please, this would help
        Hide
        Jessica Coltrin (Inactive) added a comment -

        On 1/24/14, at 11:54 AM, Larry Symms wrote:
        > https://jira.kuali.org/browse/KULRICE-8975 is borderline
        > I've asked dan to supply the workaround
        > I think it's a pretty nasty workaround which is why we upped it

        On 1/24/14, at 11:55 AM, Jessica Coltrin wrote:
        > I'll keep it in for now and make a note and get someone to at least look at it for 2.4

        Show
        Jessica Coltrin (Inactive) added a comment - On 1/24/14, at 11:54 AM, Larry Symms wrote: > https://jira.kuali.org/browse/KULRICE-8975 is borderline > I've asked dan to supply the workaround > I think it's a pretty nasty workaround which is why we upped it On 1/24/14, at 11:55 AM, Jessica Coltrin wrote: > I'll keep it in for now and make a note and get someone to at least look at it for 2.4
        Hide
        Larry Symms added a comment - - edited

        This is so old, I think we've moved beyond this. Reviewed my skype history and 6 months ago Dan couldn't remember what they did to work around it. Clearly it's not critical. Dropping to Major

        Show
        Larry Symms added a comment - - edited This is so old, I think we've moved beyond this. Reviewed my skype history and 6 months ago Dan couldn't remember what they did to work around it. Clearly it's not critical. Dropping to Major

          People

          • Assignee:
            Unassigned
            Reporter:
            Daniel Epstein (Inactive)
          • Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

            Dates

            • Created:
              Updated:

              Structure Helper Panel