Authorizing Users to the Party Pool

In this Lesson

In this lesson you will require users to be authorized to use the solution.

Concepts

To secure a solution you must ensure only authorized users are allowed to access the solution’s scenes.

• Be careful about which scenes, if any, allow public access
• Grant users access to only those scenes which are appropriate for their needs.

Public Access

Everyone can use the solution’s initial scene. Additionally, a solution may specify a group for Public Scene Access. Since the Party Pool solution does need any public scenes we can simply remove the public access group from the solution.

1. Open the PartyPool solution
2. Remove the group from the Public Scene Access section
   
   
   

   ---

3. Save the item

Provisioning Users

You will now provision users to the solution.

Admin User
Grant full access to the admin user

1. Start Derby and SxServer if they are not running
2. Start the server console
   
   
   

   ---

3. Sign on to the console
   Tenant = 0
   User = admin
   password = admin
   
   
   

   ---

4. Select User Provisioning
   
   
   

   ---

5. Search for Jane Doe
   
   
   

   ---

6. Select Jane Doe and edit the security groups
   
   
   

   ---

7. Enable the Delete Party and Edit Party groups
   
   
   

   ---

8. Press the Save button

Edit User
Create a user that can edit parties but cannot delete them

1. Select the Create New User link at the bottom of the user list
   
   
   

   ---

2. Create a user id of editor as shown here here
   
   
   

   ---

3. Search for all all users with a last name of Doe and select the newly created user
   
   
   

   ---

4. Set the password to editor (lower case)
   
   
   

   ---

5. Assign the Edit Party group to the user
   
   
   

   ---

Unauthorized User
Create a user with no authorization for the Party Pool

1. Select the Create New User link at the bottom of the user list
   
   
   

   ---

2. Create a user id of outcast as shown here here
   
   
   

   ---

3. Set the password to outcast (lower case)
   
   
   

   ---

Test the ADMIN user

1. Start the solution
2. Sign on as the ADMIN user
3. Search for users
4. Select a user
5. Both the delete and edit features are available
   
   
   

   ---

Test the EDITOR user

1. Start the solution
2. Sign on as the EDITOR user
3. Search for users
4. Select a user
5. Only the edit feature is available
   
   
   

   ---

Test the OUTCAST user

1. Start the solution
2. Sign on as the OUTCAST user
3. The user is denied access to solution’s home scene
   
   
   

   ---

In the next lesson you will provide a more appropriate message for users who have no access to the solution.

---

That concludes this lesson.