Opened 18 years ago
Closed 17 years ago
#73 closed enhancement (duplicate)
Obtain username, group, and role from the MapGuide session identifier
Reported by: | trevorwekel | Owned by: | trevorwekel |
---|---|---|---|
Priority: | medium | Milestone: | 2.0 |
Component: | Web API | Version: | 1.2.0 |
Severity: | minor | Keywords: | |
Cc: | External ID: |
Description
Currently, there is no way to obtain a users login name, group(s), and role(s) using the MapGuide session identifier. This informaton has to be maintained by the web application.
Change History (6)
comment:1 by , 18 years ago
Summary: | Obtain username, group, and role from the !MapGuide session identifier → Obtain username, group, and role from the MapGuide session identifier |
---|
comment:2 by , 17 years ago
Milestone: | 1.2 → 1.3 |
---|
comment:3 by , 17 years ago
comment:4 by , 17 years ago
Resolution: | → fixed |
---|---|
Status: | new → closed |
comment:5 by , 17 years ago
Resolution: | fixed |
---|---|
Status: | closed → reopened |
comment:6 by , 17 years ago
Resolution: | → duplicate |
---|---|
Status: | reopened → closed |
Doh. Sorry, wrong close reason.
Note:
See TracTickets
for help on using tickets.
Just wanted to make sure that there's a note here about not encoding the user/grop/role into the session ID directly.
I believe that it's possible possible to change the user identified with a session during its lifetime. In my scenario, user comes into map as unpriveledged user (Anonymous), and then may log in. In this case, user must not lose any session-based resources stored in the current session.
It would be better to have some kind of resource within the session repository which encodes the sessions current user/group/role, and make this accessible with something like a GetUserInfo call against the session resource ID.