Difference between revisions of "OS4X Portal - user management"

From OS4X
Jump to navigation Jump to search
 
(4 intermediate revisions by the same user not shown)
Line 40: Line 40:
 
*email address
 
*email address
 
*address code
 
*address code
*username
 
*for external users only: password in hashed form
 
 
*flag for password reset
 
*flag for password reset
 
*authentification type
 
*authentification type
Line 49: Line 47:
 
*comment
 
*comment
 
*user type (internal or portal user)
 
*user type (internal or portal user)
 +
 +
For external users only ("Type of user" is "portal"):
 +
*username
 +
*password in hashed form
  
 
= Adding new user =
 
= Adding new user =
Line 57: Line 59:
  
 
The event "[[OS4X_Core_event_scripts#OS4X_Enterprise_user_created_event|user created event]]" is helpful to manage newly created users with a dynamic password, i.e. for creating emails to the newly created users with their login credentials.
 
The event "[[OS4X_Core_event_scripts#OS4X_Enterprise_user_created_event|user created event]]" is helpful to manage newly created users with a dynamic password, i.e. for creating emails to the newly created users with their login credentials.
 +
 +
= Editing user attributes in external zone =
 +
Since the "add" and "edit" buttons are disabled in the external zone, entities can only be configured by a double click in the partner list. This opens the window of the clicked entity, making it possible to change the behaviour of the allowed recipients and viewable jobs.
  
 
= Synchronization rules =
 
= Synchronization rules =
Line 64: Line 69:
 
*When deleting an external portal user, it is deleted from the configured external OS4X Portal instance. If the above hierarchy is no longer required, it is deleted, too (so, empty departments are deleted; empty locations are deleted; empty partners are deleted).
 
*When deleting an external portal user, it is deleted from the configured external OS4X Portal instance. If the above hierarchy is no longer required, it is deleted, too (so, empty departments are deleted; empty locations are deleted; empty partners are deleted).
 
*When reactivating a disabled recipient in the internal zone, it is being synchronized by the above rules.
 
*When reactivating a disabled recipient in the internal zone, it is being synchronized by the above rules.
 +
*When adding an external portal company, the new entity obtains a default job viewability to its own company. This configuration can be changed at portal side only after synchronization.
 +
*When adding an external portal company, the new entity obtains a default list of possible recipients addressed to the configured [[OS4X_Core_configuration#define_own_company|own company]]. This configuration can be changed at portal side only after synchronization.
 +
*Allowed recipients and viewable Jobs are reset after sync, disallowed recipients are not.
 +
 +
= Login behaviour =
 +
*Recipients configured as "internal" are not able to log into OS4X Portal instances.
 +
*Recipients configured as "portal" are not able to log into internal OS4X instances.
  
  
 
[[Category:OS4X Portal]]
 
[[Category:OS4X Portal]]

Latest revision as of 08:01, 9 April 2019

Synchronized entities

When entities are synchronized to an external OS4X Portal server, the following configuration is important:

  • All internal entities which are defined below the "own company" are synchronized to the target machine
  • All entities which are required outside of the "own company" are synchronized. A required entity is a recipient with a configured portal server. All entities above this recipient are synchronized.

Synchronized attributes

Only a subset of all available attributes is synchronized to a remote DMZ installation of OS4X Portal. These are:

Company

  • primary key (idx)
  • shortname
  • longname
  • active state
  • comment

Location

  • primary key (idx)
  • partner reference
  • description
  • street 1 & street 2
  • city incl. ZIP code
  • active state
  • comment
  • DUNS value
  • country reference

Department

  • primary key (idx)
  • location reference
  • active state
  • description
  • country reference
  • comment

Recipient

  • primary key (idx)
  • department reference
  • name and surname
  • telephone and facsimile number
  • email address
  • address code
  • flag for password reset
  • authentification type
  • active state
  • country reference
  • gender
  • comment
  • user type (internal or portal user)

For external users only ("Type of user" is "portal"):

  • username
  • password in hashed form

Adding new user

When adding a new portal user, the user has to be added in the internal zone only. The selected usertype ("portal") adds the portal selection for the target server. Per default, the first active portal is selected.

Bildschirmfoto 2019-04-08 um 15.25.33.png

The event "user created event" is helpful to manage newly created users with a dynamic password, i.e. for creating emails to the newly created users with their login credentials.

Editing user attributes in external zone

Since the "add" and "edit" buttons are disabled in the external zone, entities can only be configured by a double click in the partner list. This opens the window of the clicked entity, making it possible to change the behaviour of the allowed recipients and viewable jobs.

Synchronization rules

  • When adding a new internal recipient, this recipient is synchronized to all active portals.
  • When adding an external portal user, this recipient is synchronized to the target server only. If the hierarchy is not available at the remote OS4X Portal instance, it's being created dynamically.
  • When deleting an internal recipient, this recipient is deleted at all active portals.
  • When deleting an external portal user, it is deleted from the configured external OS4X Portal instance. If the above hierarchy is no longer required, it is deleted, too (so, empty departments are deleted; empty locations are deleted; empty partners are deleted).
  • When reactivating a disabled recipient in the internal zone, it is being synchronized by the above rules.
  • When adding an external portal company, the new entity obtains a default job viewability to its own company. This configuration can be changed at portal side only after synchronization.
  • When adding an external portal company, the new entity obtains a default list of possible recipients addressed to the configured own company. This configuration can be changed at portal side only after synchronization.
  • Allowed recipients and viewable Jobs are reset after sync, disallowed recipients are not.

Login behaviour

  • Recipients configured as "internal" are not able to log into OS4X Portal instances.
  • Recipients configured as "portal" are not able to log into internal OS4X instances.