Can i create a user who will have a full access like a SYSDBA user to another user rights to access tables or views and how ? cause i can't find a way to do that
knowing that i am working by embedded users
GRANT ADMIN ROLE TO USER but it won't give a full right to that user
Related
Is there any way to use keycloak and give permission to a user performing actions for another user?
You can use impersonation for your request. Go to keycloak admin console - > Users - > Search User and select One user - > Click on Impersonate button. You will be logged in as that user and redirected to account console page.
To perform above task user must have impersonate role. Which can be assigned to the user from Role Mappings.
Refer https://www.janua.fr/using-impersonation-with-keycloak/ for more details
Admin can able to create users. After creating, the user will get system generated password and they can login with that password and can do some task. After login, I want to create some more users and they can also will have access to modules.
How can I do it in SugarCRM?
I am implementing an oauth 2 setup and have a use case that I am not quite sure how it applies to oauth 2. Hopefully someone here can set me on the right track.
My platform consists of an api that I want to access from a mobile app. As I control both the app and api and also have users owning the data I figured the Resource Owner Password Credentials Grant grant would fit in nicely.
However on the app I want the user for now to only login via facebook. When I receive the uid and access token from facebook I would create a new user or update a current user in my api. A password wouldn't be set in this process and as the password grant requires a username and password to get the access token my problem becomes apparent.
So, what would be good practice for this use case? Should I create a password for the user or maybe send the facebook token as a valid password credential that is validated in the api? Or maybe a different grant type is better suited?
Appreciate any feedback!
Thanks!
I want to add a "Login to Facebook" button to my page. However, I don't want to have the user prompted to grant my app access. I don't need any of the user's personal info so they shouldn't need to grant me access. Is this possible?
I don't need any of the user's personal info
So why to use the facebook API?
You must be fetching at least the ID of the user right? That's the part of just the basic information; so in the least case the user will be prompted to grant the permission to your app to fetch the basic info. You shouldn't bother much, since most of the users don't hesitate sharing just their basic information.
I'm struggling with something that should be really easy I think. I have a authentication system on my page built with zend_auth.
It all works flawlessly, but now I wanted to give users the opportunity to log in with twitter.
I've been able to build the whole oauth authentication process, and after a successful twitter authentication I can get the twitter username from twitter.
After that, I do a lookup in my user table, and find the user with that twitter name (I have a column for it in my database).
Now I have the user_id of the logged in user, but how do I get zend_auth to know that that user is logged in? I have a role based rights system stored in the database, so the zend_auth_storage needs to know the ID of the logged in user.
You have to write the user row in the storage yourself .
Zend_Auth::getInstance()->getStorage()->write($userRow);
$userRow can be different in your case its basically the data which get stored in session once user gets logged in generally its a single row in users table (minus the password column for security reasons)