JS7 JobScheduler

Space shortcuts

Page tree

Versions Compared

Old Version 3

changes.mady.by.user Aditi Dubey

Saved on

compared with

New Version 4

changes.mady.by.user Aditi Dubey

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

The built-in Identity Service does not require any settings.

After installing the JOC Cockpit, log in with the default root:root user name and password which comes under the Shiro identity service.

The Manage Accounts section of the JOC Identity is then accessed via the Profile Menu as shown in the screenshot below. Select Identity Management Service.

Image Modified

The Identity Management Service window has the list of the available Identity Services which is previously created or you can also create a new Identity service. Form here you can select the Identity Services to manage the accounts inside it. Select the JOC from the list.

Image Modified

The JOC Identity Service window has the three main section which can managed via the tabs:

Image Modified

  • Accounts: for the configuration of User Accounts. Accounts configured in the Database and access from there only.
  • Manage Roles: for configuring Roles and the Controller that can be accessed by a Role.
    • Permissions: a sub-view for configuring access to Folders and Role Permissions.
  • Profile: from this view user can check the last login detail.

These tabs will be described in the following sections.

The Accounts Tab

The Accounts tab is opened first when a user selects the Identity Service from the Identity Management Service window and lists all the User Accounts that have been configured along with the Roles they have been assigned.

Image Modified

The above screenshot shows the test User Account which is manually created with the role. Currently, JOC Identity Service does not contains any default account and roles inside it. 

  • The Create Account button is used to open a window to add a new User Account with name, password, and Roles.
  • The additional options (ellipsis) symbol allows an Account to be edited (change the Account Name and/or Password, select/deselect Roles) and to be copied or deleted.
  • Clicking on the Account Name brings the user to the Manage Roles tab (described below) where the Controllers and Role(s) allocated for the User Account can be edited.

The Manage Roles Tab

The main purpose of the Manage Roles tab is to allow Controller Roles and any Controller which these Roles will be restricted to be configured. 

When the tab is first opened after installation of the JOC Cockpit it will be blank and no roles are created by default. In the below screenshot you can see test-role created manually.

Image Modified

...

Roles contain default in the

...

controller which means the role is available for all the Controllers - the default setting.

If the

...

Manage Roles tab is opened by clicking on an Account Name in the Accounts tab (described in the previous section), the

...

Manage Roles Tab will show those Roles that have been assigned to that Account. The Account that is active is shown in the Account button, which can also be used to select and deselect Accounts.

Positioning the mouse over a role name blends in two links as shown in the screenshot above:

  • the pencil link allows the role to be edited and
  • the X link allows the role to be deleted.

A set of Permissions is configured for each

...

role. Each Permissions set can be inspected by clicking on the

...

default from the list of roles, which will open the Permissions tab for the Role

...

. An example Permissions set is described in the next section. A matrix showing the default Roles and their Permissions along with a description of the Permission is provided in the

...

 JS7 - Permissions article.

The Permissions Sub-View

The main purpose of the Permissions view is to allow Folders and Permissions to be configured for each Role.

Folder Selection

Folders are added using the Add Folder button shown in the background of the screenshot below, at the top right.

Image Added

Folders themselves are selected from a simple tree view of the folders. This tree view is opened by clicking on the folder symbol shown in the screenshot.

Permissions Configuration

Two editors are available for the configuration of the Permissions granted for a Role:

  • A graphical editor as shown in the next screenshot:
    Image Added
  • Changes to the Permissions tree are saved in the database.
  • The Undo button allows the last 10 changes made to be undone stepwise.
    • The states saved in the Undo button will be deleted when the Permissions tab is left.
  • The Reset button changes the Permissions tree back to the initial state when the Permissions Tab was opened.
    • The state stored in the Reset button will be deleted when the Permissions tab is left.
  • Clicking on the middle of a Permission icon will grant the Permission for the current Role.
    • Granted Permissions have a blue background and are by default recursive.
  • The "+" and "-" symbols at the right of each Permission icon open and close child branches.
  • The "-" and "+" symbols at the left of each Permission icon are used to revoke a higher Permission and are by default recursive.
    • Permission icons affected by revoked Permissions are shown with a gray background 

Shiro Identity Service Settings

...