Prev
Next
Forums S3 Security

Securing RSS...

Sort:
You are not authorized to post a reply.
Author
Messages
klive
Veteran Member
Posts: 40
Veteran Member
2/26/2008 6:33 PM

    Haven't seen much on this and I have tried several things thought someone here might be able to help...I want to be able to setup security for RSS to not allow requesters to approve their own requests...My thought was to attack this from the Approvers perspective...but since RSS doesn't give me forms and fields its a little difficult to determine where and what rules to write.  Any assistance would be greatly appreciated...

    John Henley
    Senior Member
    Posts: 3348
    Senior Member
    2/26/2008 7:41 PM
      Are you running LSF9 security?
      Thanks for using the LawsonGuru.com forums!
      John
      klive
      Veteran Member
      Posts: 40
      Veteran Member
      2/26/2008 7:44 PM

        Yes, Have been since November 2006...but didn't go-live with RSS until maybe a year ago and recently got Landmark up and running...

        John Henley
        Senior Member
        Posts: 3348
        Senior Member
        2/26/2008 8:17 PM
          I think you'd want to secure RQ12 to only allow inquire if the requestor on the requisition is the same as the logged-in user...

          if(form.RQH_REQUESTER==user.getRequesterId())
          'I,N,P,'
          else
          'ALL_ACCESS,'
          Thanks for using the LawsonGuru.com forums!
          John
          klive
          Veteran Member
          Posts: 40
          Veteran Member
          2/26/2008 8:18 PM

            Thanks John I will try it and let you know what Iget...

            You are not authorized to post a reply.