[LBAC-15] Add restrictions to the UserService methods to restrict them by the location - OpenMRS Issues

XML

Word

Printable

Details

Type: New Feature
Status: Closed
Priority: Should
Resolution: Fixed
Affects Version/s: None
Fix Version/s: 0.1.0
Labels:
- gsoc2018

Complexity:
Low

Description

Location Based access control method should add the restrictions to these following methods from the UserService class which are directly getting the User object from the DAO.

getUsers()
getAllUsers()
getUser()
getUserByUuid()
getUserByUsername()
getUserByName()
getUsersByPerson()

It can restrict by the locations while directly accessing the users for some other use cases.

Apart from this, It should have a method to restrict person object of the users since we haven't assigned the person attribute for those persons belongs to the users.

Dev Notes

Need to add an AOP Advise for those methods to restrict by the locations.

If the person doesn't have the location person attribute, then get the list of the users who belong to that person, and check for the location access among them.

Gliffy Diagrams

Attachments

Activity

People

Assignee:: Suthagar Kailayapathy

Reporter:: Suthagar Kailayapathy

Designated Committer:: Suthagar Kailayapathy

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Dates

Created:: 2018-08-03 03:14:54 GMT

Updated:: 2018-08-15 16:46:12 GMT

Resolved:: 2018-08-15 16:46:12 GMT