Versions Compared

Old Version 9

changes.mady.by.user Jon Gorrono (Unlicensed)

Saved on

compared with

New Version 10

changes.mady.by.user Lisa Wilson

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

JIRA: SAK-131: Add Role based SU security

This request to add Role-based SU security encompasses two parts:

  1. a role-based limitation and specification of which roles may use SuperUser (SU) access and what the limitations of SU access are based on the original user's role, and
  2. allows the portal to recoginze that the user is in an SU role and provide a UI mechanism (link or button) for the user to leave SU and return to their own role without having to log out and log in again.

The story details of these separate tasks are listed as:

SAK-354: Add Role based SU security
SU tool uses Security(Service).isSuperUser() to determine who can SU. This should be modified to use agent,/function/target ....

IT Express - can su - students
IT Expreess- can su - faculty
IT Express- cannot su - admin

SAK-367 - CharonPortal Tracking of assumed Id's with 'Return to...'
part two of two
2) CharonPortal patch: - assumed identities tracked with 'Return to <Eid>' link next to Logout link
create special url ('/realuser') that the portal will use to reload any existing previous usage session

Test for sub-story SAK-354: add realm based security to SuTool

This test plan covers the sub-story SAK-354: add realm based security to SuTool ONLY

...