User Permissions for certain pages only possible?

Similar Messages

• How to enable https or SSL for login page only?

  Hi,
  My application is runnnin in iPlanet web server 4.1 version.
  how to make my login page only secured (SSL)?
  previously we have done https enable for the whole application. but client specifically wants for login page only, not for the whole application. how can i make SSL for login page only in iPlanet 4.1.
  I searched through iPlanet console, but i didn't get any option such.
  i found one more thing console,i.e., "encrypt on or off". if i put encrypt "on" means, it will be for the whole application? How can i make it for login page only.
  Do i need to do any code changes for that?
  i tried through web.xml security constraints tags, but it is not working and taking that file as we are doing everything in servlet.properties and rules.properties files.
  can anybody help me in this regard?
  Regards,
  Chandu

  You specify SSL in web.xml of your application. So, in that case other web applications in same server would not be affected.
  <security-constraint>
  <web-resource-collection>
  <web-resource-name>myresources</web-resource-name>
  <url-pattern>/*</url-pattern>
  </web-resource-collection>
  <user-data-constraint>
  <transport-guarantee>CONFIDENTIAL</transport-guarantee>
  </user-data-constraint>
  </security-constraint>Following link will help you to setup SSL in tomcat:
  [http://techtracer.com/2007/09/12/setting-up-ssl-on-tomcat-in-3-easy-steps/|http://techtracer.com/2007/09/12/setting-up-ssl-on-tomcat-in-3-easy-steps/]
  Thanks,
  Mrityunjoy

• Set a User Status for Quality Notifications only if they are "Activated".

  Hello experts:
  I need to be able to set a User Status for Quality Notifications only if they are "Activated".
  When defects are recorded for an inspection lot, a "Defect Notification" is created which can be activated to become a "Quality Notification".  Initially, the only difference between the inactive "Defect Notification" and the active  "Quality Notification" is that  the system status DEFR is active for the "Defect Notification", but is cleared when the notification is activated.
  So, I'm looking for the business process associated with the Activation to use as a trigger for my own user status.
  I checked the business rules for status DEFR and found that the following processes clear this status
    PMM1 -  Postpone Notification
    PMM2 -  Put Notification In Process
    PMM3 -  Assign Order
    PMM6 -  Put Notification In Process Again
  Any Ideas ?

  Perhaps some additional information would help you understand what I need to do.
  For notification type F3, we are recording all defects found in production.
  Most of these are expected defects that result in a minor reduction in yield.
  For this type of defect, we do not activate the notification, and the inspection lot is closed automatically at the end of production.
  However, sometimes defects are observed of an unexpected type or a higher than expected quantity.
  When this happens we manually activate the notification and assign tasks to find and correct the cause.
  It is only for these activated notifications that I want to automatically set a user status, which among other things, will prevent the notification from being closed until some other actions are complete and a different user status is selected.
  The function of the user status currently works exactly as I want, but if it is set as the initial status for all F3 notifications, it is also preventing the un-activated defect notifications from automatically closing.  I therefore want to use the Activation event as the trigger to set my user status.

• User permissions for stores

  Hi,
  I have for example 2 stores - A and B. Is it possible to define, that user 1 has rights for store A only for viewing and for store B full acces?
  I need to define, that some group of users have store A for viewing only and B for full work (transfers, deliveries, invoices) and the others have B for viewing and A for full work.
  Thanks for any idea
  Petr

  Hi Petr,
  There are some things you can do.
  I don't think it is possible to block a user from having access to a document numbering series and at the same time be able to see them.
  It is however possible to assign different default numbering series to different users (departments). It is also possible to give user A access to document numbering series A, and User B to series B. this can be done with the Authorisation under (from the main menu):
  Administration -> System Initialisation -> Authorisations -> General Authorisations:
  Inj the Authorisations go to:
  Administration -> System Initialisation -> Numbering Series -> Here you have different groups that can be assigned to Document Numberings Series. This way you can block one user from adding and seeing a numbering series. Unfortunately it is not possible to have 'Read Only' access here.
  The authorisation that is given here relates to the field in:
  Administration -> System Initialisation -> Document Numbering -> Open a series: Field - 'Group'.
  A part from this there is also the Document Ownership functionality. This will not block users from adding documents in a certain series but it will grant different types of access to documents added by other departments and users.
  Below is a link to the PDF with the 'How-to-guide' to set up the Data Ownership structure in Business One.
  https://service.sap.com/~form/sapnet?_FRAME=CONTAINER&_HIER_KEY=701100035871000371280&_OBJECT=011000358700004490662004E&_SCENARIO=01100035870000000183&
  Please note that the document is for version 2004A, but it is the latest one available and the functionality has changed little since.
  I hope this helps.
  Jesper

• Add a page still visible under the gear even Read permissions for the Pages Library

  Hi,
  Some of the employees have Read permissions on the Pages Library. The permissions have been broken for this Library.
  They still see the 'Add a page' action under the gear. So if they want to create a page, SP asks for a page name and then they received the request to get access.
  Is it a bug or is it standard?
  Thanks,
  Christophe

  Hi,
  I have done a test in my SharePoint 2013 to reproduce your issue, but I can't reproduce the issue.
  If the users only have read permission on the Pages Library. They can't see the 'Add a page' action under the gear.
  I suggest you use check permission to check the permission for the users, make sure they only have read permission on the Pages library.
  Then you can do a test in another library and compare whether the issue is exists. if not, remove the user from the Page library and set read permission for him again.
  If the issue still exists, Please offer a screenshot about the issue.
  I am looking forward to your reply back.
  Best Regards,
  Lisa Chen
  TechNet Community Support
  Please remember to mark the replies as answers if they help, and unmark the answers if they provide no help. If you have feedback for TechNet Support, contact
  [email protected]

• User permissions for wiki and calendar changed by themselves?

  I am hoping I can describe this behavior properly. I add a new group using an administrator's account logged into the web interface. I go to that groups settings page and delegate group admins and read/write and read only users. I add a bunch of calendaring appointments into the calendar and all is good. One of the users logs in and adds her own calendaring information as well and modifies the wiki pages. Fast forward a week or so and now she is only read, she cannot edit wiki pages and cannot interact with the calendar.
  Here are the verbose logs from wiki services:
  2011-03-28 14:58:41-0700 [-] [caldav-8011] [QueryProtocol,client]
  [calendarserver.provision.root#debug] Wiki lookup returned user:
  blahblah
  2011-03-28 14:58:41-0700 [-] [caldav-8011] [QueryProtocol,client]
  [calendarserver.provision.root#debug] Wiki user record for user
  blahblah :
  <OpenDirectoryRecord[users@058167af-ace8-519a-ac3d-e166498db024(/Search->/LDAPv3 /127.0.0.1)]
  C1EF4B6C-178A-4937-A8D3-AF535400FC3F(blahblah) 'blahblah'>
  2011-03-28 14:58:41-0700 [-] [caldav-8011] [QueryProtocol,client]
  [calendarserver.provision.root#debug] Wiki-authenticated principal
  C1EF4B6C-178A-4937-A8D3-AF535400FC3F being assigned to authnUser
  2011-03-28 14:58:41-0700 [-] [caldav-8011] [QueryProtocol,client]
  [calendarserver.provision.root#debug] Wiki principal servicedepartment
  being assigned to authzUser
  2011-03-28 14:58:41-0700 [-] [caldav-8011] [QueryProtocol,client]
  [twistedcaldav.directory.wiki.WikiDirectoryService#info] Returning
  existing wiki record with UID wiki-servicedepartment
  2011-03-28 14:58:41-0700 [-] [caldav-8011] [QueryProtocol,client]
  [twistedcaldav.directory.wiki.WikiDirectoryService#info] Returning
  existing wiki record with UID wiki-servicedepartment
  2011-03-28 14:58:41-0700 [-] [caldav-8011] [QueryProtocol,client]
  [twistedcaldav.directory.wiki.WikiDirectoryService#info] Returning
  existing wiki record with UID wiki-servicedepartment
  2011-03-28 14:58:41-0700 [-] [caldav-8011] [QueryProtocol,client]
  [twistedcaldav.extensions#info] REPORT
  /calendars/_uids_/wiki-servicedepartment/calendar/ HTTP/1.1
  2011-03-28 14:58:41-0700 [-] [caldav-8011] [-]
  [calendarserver.provision.root#debug] Wiki principal servicedepartment
  being assigned to authzUser
  2011-03-28 14:58:41-0700 [-] [caldav-8011] [-]
  [twistedcaldav.directory.wiki.WikiDirectoryService#info] Returning
  existing wiki record with UID wiki-servicedepartment
  2011-03-28 14:58:41-0700 [-] [caldav-8011] [-]
  [twistedcaldav.directory.wiki.WikiDirectoryService#info] Returning
  existing wiki record with UID wiki-servicedepartment
  2011-03-28 14:58:41-0700 [-] [caldav-8011] [-]
  [twistedcaldav.directory.wiki.WikiDirectoryService#info] Returning
  existing wiki record with UID wiki-servicedepartment
  2011-03-28 14:58:41-0700 [-] [caldav-8011] [-]
  [twistedcaldav.directory.wiki#debug] Looking up Wiki ACL for: user
  [C1EF4B6C-178A-4937-A8D3-AF535400FC3F], wiki [servicedepartment]
  2011-03-28 14:58:41-0700 [-] [caldav-8011] [QueryProtocol,client]
  [twistedcaldav.directory.wiki#debug] Wiki ACL result: user
  [C1EF4B6C-178A-4937-A8D3-AF535400FC3F], wiki [servicedepartment],
  access [read]
  In this case the group is servicedepartment and the user is blahblah, who I just added using an admin to the group as a read/write user.
  So the question is this- is there a way that I can use the command line to verify and or change permissions for users if this happens in the future? I am really digging the calendaring and wiki features, but I cannot recommend them for use by the company if their accounts stop working all of a sudden…
  Many thanks for any tips!

  Turns out they didn't change themselves, but authentication got out of whack. This post fixed it for me, but I just jogged access on ical and blogs. Not sure which or both is needed, but after I toggled them over and back I was up and running again.
  <SNIP>
  Solution found athttp://michaeljin.wordpress.com/2010/01/05/locked-out-of-mac-os-x-server/
  It’s blog update time! Updates have been a little scarce lately, been super busy with getting trophies on PS3
  Anyway, recently encountered the following with a Mac mini server running Snow Leopard Server:
  Despite being able to ARD / Screenshare the Mac mini, I was unable to get any further than the login window. Authentication credentials are obviously valid. No weird access permissions have been set. However, the weird thing was, I can connect to the server via Server Admin tools (from another Mac) and all other services were running without a hitch.
  After much head scratching it turns out to be a sACL (Service Access Control List) issue.
  This thread solved the mystery!
  http://discussions.apple.com/thread.jspa?threadID=1654864
  To save you the trouble, I’ll lay it out here. I cannot take credit for this, but Randall can!
  Open Server Admin on a computer (any), and connect with the local admin to the machine.
  Select the server and authenticate.
  Select Settings, then go to Access. You’ll want to make sure that Login Window and SSH have the local admin account listed if you select the option to “Allow only these users”. For now, I would suggest making sure all services have “Allow all users and groups” selected.
  If (as in my case) it was set to Allow All in the first place, simply toggle the settings – back and forth.
  Save.
  Try logging in again… should be a good one!
  </SNIP>

• Can character encoding be predefined for certain pages?

  Certain pages that I visit frequently require me to manually set my character encoding to Western (ISO Latin 1), both when my default character encoding is set as UTF-8 and Western (ISO Latin 1).
  As the pages that show up malformed are embedded in other frames I suspect that the top frame forces a different encoding than is on the embedded page.
  An example page is here (847.is). The topic list of this message board is in order, but when any one of the topics is viewed all accented and special characters are missing, until Western (ISO Latin 1) is manually set as the character encoding. Similarly, opening any of the topics in a tab will result in missing characters.
  Is there some way for me to circumvent having to go through all those menus to set it? Can I somehow define that these pages should be viewed in Western (ISO Latin 1) or can I set a keyboard shortcut for Western (ISO Latin 1)?
  MacBook 2006   Mac OS X (10.4.7)   Safari version 2.0.4
  MacBook 2006   Mac OS X (10.4.7)  

  For instance if I opened
  an entry on Vísindavefur
  HÍ out
  of the parent frame the accented letters would
  show up somehow mangled, but this is no longer a
  problem.
  That page has no charset in the source and thus should only display correctly if you have Latin-1 set as the browser default. With UTF-8 set as the default you should see (in Safari) a ton of black diamonds with question marks inside.
  Firefox never displays ð (eth), þ (thorn) and ý
  (accented y) correctly for me, did not do it on the
  old machine and does not do it on this one either,
  FireFox displays them perfectly for me in both 10.3 and 10.4.
  Actually, if I set Opera encoding to UTF-8 it
  displays the topics on 847.is as Safari does.
  This indicates it is a system issue rather than Safari. Sorry I can't duplicate it and have no good idea what could cause it on a normal system. Have you (or the place where you buy your machines) by chance installed any special software add-ons to enable the use of non-Unicode Icelandic (for apps like Appleworks, WordX, etc)?

• Lite H.264 DVR User Permissions for certian Cameras

  In our building we have a lite H.264 DVR. We have one camera that we need to share with a new user on the DVR.
  I cant for the life of me know how to go about doing this.
  First I thought it would be in the user permissions but within that there wasn't much in the way of setting to restrict what cameras could and couldn't be viewed.
  If someone could give me some feedback on how this could be set up that would be brilliant.
  This topic first appeared in the Spiceworks Community

  Love marriage specialist baba, Vashikaranspecialist baba, black magic specialist baba..+91-9829791419 No1 Indian AstrologerAGHORI Ji +91-9829791419 15 time gold medalist Baba ji...inuk...usa....canada....in india..... love Vashikaran specialist ,voodoo spellget your love back by Vashikaran, blackmagic love Vashikaran specialist, bringyour love back, get back your lost love, win your lost love back, spells andtips to get your love back,Vashikaran WORLD FAMOUS BEST INDIAN molvi baba JIINDIA / AMERICA / CANADA / AUSTRALIA / UK / USA/INTERNATIONAL SERVICE WITHAGHORI ji 50 YRS EXPERIENCE.... love mantra to get back your lost love, Vashikaranspecialist to bring love back, solve love problems, bring your love back bytantra and ilam, powerful Vashikaran mantra to win the the about black magicspecialist molvi baba ji love back, indian hindu...

• No User Authentication for support pages

  While testing I notice that entering the full URL's in the browser address bar for
  Support Tickets ( SupportPage.aspx)
  KnowledgeBase (support/default.aspx, SolutionDetail.aspx and Search.aspx)
  Takes a user straight to those pages without forcing a login.
  Is there a way of forcing a login to access these pages?
  The Knowledge Base is perhaps less import but the current environment allows Support Tickets to entered without a UserID which does not make sense.

  Jay,
  Went in as manager I cleared the Cache (- it still reports 5 items in the cache though ) and cleaned memory
  I logged out. and then typed in the URL's
  There I was back in support again and this time in the support ticket page the userID and BP ID were showing as manager and internal
  Seems something is still being held in memory - but surely this shouldn't happen if I'd properly logged out.
  I closed the site and re-opened - this time although I could get back to support using the URLs again without logging in , no UserID and BP Id were displayed on the support ticket page.
  I wonder if there is anything in the settings causing this?

• Setting CUIC user permissions for all reports at once

  Hi all,
  We are using CUIC 8.0(4) Standard Edition and trying to set CUIC user permissions, such as Read, Exec and Write, for reports.
  If we need to give access to all reports then we should set permissions for each report separately.
  Is there any way to set those permissions for all reports at once?
  We attempted to set Read, Exec and Write premissions for the Reports, Stock and UCCE folders but no luck.
  Thanks.
  Nikolay

  Hi all,
  We are using CUIC 8.0(4) Standard Edition and trying to set CUIC user permissions, such as Read, Exec and Write, for reports.
  If we need to give access to all reports then we should set permissions for each report separately.
  Is there any way to set those permissions for all reports at once?
  We attempted to set Read, Exec and Write premissions for the Reports, Stock and UCCE folders but no luck.
  Thanks.
  Nikolay

• Scheduling for certain Equipment only from a maint. plan

  Hello,
  I have maintained many Equipment as separate line item in a Main. Plan. While scheduling, I donèt see option to select certain Equipment only.
  I would like to maintain one or few main. plan, one each for a set of equipment. And then call a few from that one set of equipment. E.g. Total Equipment 120,000. 10 types each 120,000. Thus 10 maint. plans. Call Type I/Maint. Plan 1 and Schedule 1-10,000 on Jun 1.  Call Type 2/Main Plan 2 and Schedule 10,001-20,000 on Jul 1 and so on.
  Any suggestion please!

  There is no way to do equipment wise scheduling in IP30. you have to create separate maintenance plans equipment wise and try using sort field in additional so that you can schedule maintenance plan bit easily.

• Possible to hide Grouping name for certain tracks only?

  I am organising my classical music library and using the Grouping column with good success.
  However, it would be visually better to be able to hide the Grouping name for the subsequent movements of a piece. For example in a Dvorak album:
  ..Grouping*.............................*Name
  1.Cello Concerto in B minor.1.Allegro
  2...........................................2.Adagio
  3...........................................3.Allegro moderato - Finale
  4.New World Symphony........1.Adagio
  5...........................................2.Largo
  6...........................................3.Scherzo
  7...........................................4.Allegro con fuoco

  I have never used the shuffle by groupings feature, but I would think it would be affected.
  You need to experiment and decide how important shuffle by grouping is compared to the appearance in the iTunes Library.
  iTunes is not good at dealing with classical music and you will find a lot of discussion of the problem with Google.
  Here is an example:
  http://www.till.com/blog/archives/2008/09/classical_itune.html

• The account application created using can see current Blank Site page but no other user account see current page only some old page?

  Hello Community
      Using Sharepoint 2010 Server and the UI, building an intranet
  starting with a Blank Site and then adding subsites can be accomplished.
      However, in this case the current Blank Site page that was created only shows
  when logged in using the account that the application was created under.
      Any other account used to login with when the url is typed into the
  address bar does not show the current Blank Site page.
     Instead when using any other account the page that is returned is
  some page that was created early in in the creation of the site.
      A Blank site is said to be:
          "A blank site for you to customize based on your requirements."
      I checked-in the v4.master and approved it but the problem still exists.
      Then I checked the Site Collection features under Site Collection
  Administration "Active" contains:
      Sharepoint Server Publishing Infrastucture
      Sharepoint Server Standard Site Collection features
      Then I checked under Site Actions has Manage Site features "Active"
  contains:
      Sharepoint Server Publishing
      Sharepoint server Standard Site features
      It is said that maybe the page needs to be "Published".  Basically
  this is a Blank Site page so when the instructions says:
     "To publish a page, on the page that you are editing, on the
  Page Editing toolbar, click Publish."
      I am unable to do it because when I:
         "Edit Page"
      There is not no option on the ribbon to choose "Publish".
      Neither did I see the "Publish"option when editing the v4.master in SPD.
      In summary, when logged in with the account that everything was created
  under I can see the current Blank Site with the Lists and everthing else
  on the page but how come when I login with any other user account
  I don't see the current Blank Site page but instead see some old page that
  I may have created earlier when creating the application?
      Thank you
      Shabeaut

  Hello Community
      I think it is worth mentioning that the Top Link Bar shows what appears
  on the current Blank Site page but it is the OOTB NoteBoard  and Discussion Board
  List which both reside in Left web part on the Blank Site page that has been replaced
  on the page by what had been in an old Content Editor web part during early creation.
      How can I grant permissions to the OOTB NoteBoard and the Discussion Board List
  that would allow other user accounts to see them, thus making the entire current Blank Site page
  visible other user accounts?
      Thank you
      Shabeaut

• How do I get the user information for a page?

  I would like to display information about the person that created a page in CQ.  I know I can get the createdBy information from the page properties, but how can I turn that into a user object where I can get more detialed information about that user?

  If you are within an OSGi bundle you can use the SlingRepository Service. Now it depends how you develop your OSGi services and components. I use the maven scr plugin for this. With this plugin it is possible to get references to services with java annotaions.
  Example:
  @Component(name="SampleService",
          label = "SampleService",
          description = "SampleService",
          immediate = true, enabled = true, metatype = true)
  @Services({ @Service(value = SampleService.class) })
  @Properties({
  @Property(name = "service.description", value = "SampleService"),
  @Property(name = "service.vendor", value = ") })
  public class SampleServiceImpl implements SampleService
  @Reference(policy = ReferencePolicy.STATIC)
  private SlingRepository repository;
      public void openAdminSession() {
          Session session = null;
          if (repository != null) {
              try {
                  session = repository.loginAdministrative(null);
                  //do something here
              } catch (RepositoryException e) {
                  LOG.error("Unable to open admin session:" + e.toString());
              } finally{
                                            if(session != null){
                        session.logout();
  To access a service from a JSP page you can use the reference of the SlingScriptHelper. You have to use the <cq:defineObjects/> tag.
  Example jsp:
  <cq:defineObjects/>
  SlingRepository repository = sling.getService(SlingRepository.class);
  Session session = null;
          if (repository != null) {
              try {
                  session = repository.loginAdministrative(null);
                  //do something here
              } catch (RepositoryException e) {
                  LOG.error("Unable to open admin session:" + e.toString());
              } finally{
                                            if(session != null){
                        session.logout();

• User permissions for shared mailbox

  In a big organization, we've multiple shared mailboxes. Each mailbox is being looked at by different employees. We want to provide folder level restrictions to the employees and have primarily 3 type of access at a folder and root level:
  1) Owner access (Read, Create, Respond and Delete)
  2) Employee access (Read, Create and Respond)
  3) Read and View-only access
  Idea is to have a controlled access environment in the company where we don't want any employee to delete any e-mails and they're held accountable for their work.
  Million dollar question is - How do we achieve this in an Exchange Service 2010 Enterprise SP3 environment? Is it recommended to have such access levels? Can we've profile groups created to add users in future too with similar access restrictions?
  Please provide step by step.
  If this is not possible or advised, please suggest a better alternative with which we can track who deletes the e-mails and then change their behavior. May be some e-mail logs that help us determine this information? What is your suggestion?

  Hi,
  You can try Exfolders tool:
  http://gallery.technet.microsoft.com/office/Exchange-2010-SP1-ExFolders-e6bfd405
  How to use Exfolders:
  http://mouzzamh.wordpress.com/2012/04/01/how-to-use-exfolder-tool-for-exchange-2010/
  Note: Microsoft is providing this information as a convenience to you. The sites are not controlled by Microsoft. Microsoft cannot make any representations regarding the quality, safety,
  or suitability of any software or information found there. Please make sure that you completely understand the risk before retrieving any suggestions from the above link.
  Thanks,
  Simon Wu
  TechNet Community Support