I'm able to login to cscockpit through user credentials of PCM and CMS cockpits. This is incorrect behavior. I checked the Group access rights of PCM, CMS and CS users in HMC and they look fine to me. Any help what could be the problem? Many thanks!
PS: I don't have rights to post question on Hybris Wiki and Experts. Also, I could not find any useful info there.
cockpit 扩展定义了负责身份验证的“corePreAuthenticationChecks”bean,用户组的默认配置是:
<property name="allowedUserGroups">
<list>
<value>Admingroup</value>
<value>Employeegroup</value>
</list>
</property>
因此,为了覆盖此行为,您需要自定义 CsCockpit 扩展(插件或新扩展),请查看“solrfacetsearch-spring-security.xml”作为示例。
这是因为在 productmanager、cmsmanager 等中默认添加了组“cockpitgroup”。cockpitgroup 允许访问该组中定义的 cockpits 的权限。
“应该有权访问驾驶舱应用程序的所有用户和组都应该属于这个组”。
此外,当用户映射到多个组时,Hybris 会执行“AND”操作并执行。希望这会对你有所帮助。