CA PC Apps and User Authorization

Document created by Lutz_Holzbecher Employee on May 11, 2017Last modified by Lutz_Holzbecher Employee on Jul 7, 2017
Version 2Show Document
  • View in full screen mode

With CA PM 3.1, CA PC apps can make direct request to DA REST webservices.  REST requests to urls like “/pc/da/rest/…” will be forwarded to the Data Aggregator through a proxy capability.

By default, only administrators (UserName=admin) are authorized to perform these requests. Apps that are run by a non-admin users will receive returncode 403/Forbidden.

 

Authorize CA PC users for DA REST requests in Apps

On CA PC server, run the following steps

  • mysql netqosportal
  • insert into general (attribute, value) values ('daProxyValidUsers', 'admin,<user1>,<user2>…');
  • commit;

 

Restrict CA PC App usage

Administrators may want to restrict the usage of some CA PC apps to specific users (by role or name). At present, this should be controlled by the app itself.
For example:

  • the app has context parameters such as UserName or UserRoleName
    url=myApp.htm?...&UserName={UserName}&UserRoleName={UserRoleName}
  • there is code in the app that disables buttons and only proceeds if the criteria are met
  • for example:


However, any user will see the app view if he has access to the parent dashboard or context page tab.

 

2 people found this helpful

Attachments

    Outcomes