[Progress Communities] [Progress OpenEdge ABL] Forum Post: RE: OE STS Gateway a few questions

Status
Not open for further replies.
P

Peter Judge

Guest
The callbacks in the OEAG will allow you to add roles into the token that is returned. The connection role authorization is based on the qualified-user-id and those values are stored in the ‘business db’. The _Can-* stuff is still where it is, and uses (if I remember right) the qualified user id too. If you add roles that you want for ABL business logic authorization you need to check/enforce them yourself. The one exception is if you’re using PASOE and set up intercept-url (oeablSecurity.csv) authorization using roles.

Continue reading...
 
Status
Not open for further replies.

Similar threads

J
  • Locked
[Progress News] [Progress OpenEdge ABL] Deep Dive Into the Progress OpenEdge 12.8 Release: Application Observability, Event Streaming, Data Masking an
Replies
0
Views
180
Jessica Malakian
J
T
  • Locked
[Progress News] [Progress OpenEdge ABL] No-Code Business Logic Development for MarkLogic Database
Replies
0
Views
237
Thierry Ciot
T
J
  • Locked
[Progress News] [Progress OpenEdge ABL] Key Benefits of Managed File Transfer Software
Replies
0
Views
312
John Iwuozor
J
J
  • Locked
[Progress News] [Progress OpenEdge ABL] What’s New in OpenEdge 12.8: Supercharge Developer Efficiency, Enhance Database Management and Improve Applica
Replies
0
Views
430
Jessica Malakian
J
S
  • Locked
[Progress News] [Progress OpenEdge ABL] Recommended Reading for Web Designers in 2024
Replies
0
Views
505
Suzanne Scacca
S
Top