Tuesday, February 24, 2015

How to Create Custom Role(Group) in Red Hat JBoss BPM 6 Business Central


In this tutorial, I am going to show you how to create a new user with human task management roles only, This user can not perform any other task except to manage the human task assigned to him or he belongs to the group based tasks.
This way you can create your own custom roles and restrict the access to those resources in business central.
  • Navigate to  /jboss-eap-6.1/standalone/deployments/business-central.war/WEB-INF/classes
  • Open workbench-policy.properties file in xml editor
  • Under  # Groups of features section add the following line of code and save the  file
           group.wb_for_taskworker=wb_task_management



  • Under # Granted roles per feature section add the following code and save it
          roles.wb_for_taskworker=taskworker

 
  • Navigate to  /jboss-eap-6.1/standalone/deployments/business-central.war/WEB-INF/classes folder
  • Open the web.xml in xml editor
  • Go to   <!-- security settings --> section
  • Add the following yellow highlighted code in 
  <security-constraint>
    <web-resource-collection>
      <web-resource-name>console</web-resource-name>
      <url-pattern>/org.kie.workbench.KIEWebapp/*</url-pattern>
      <url-pattern>*.erraiBus</url-pattern>
    </web-resource-collection>
    <auth-constraint>
      <role-name>admin</role-name>
       .....
      <role-name>taskworker</role-name>
    </auth-constraint>
  </security-constraint>

    <security-constraint>
        <web-resource-collection>
          <web-resource-name>formModeler</web-resource-name>
          <url-pattern>/formModeler/*</url-pattern>
        </web-resource-collection>
        <auth-constraint>
          <role-name>admin</role-name>
            ......
         <role-name>taskworker</role-name>
        </auth-constraint>
    </security-constraint>
            
  • Add the following code in the security-role section
  <security-role>
    <description>Task Worker - normal user of the system to take actions on business tasks. Works primarily with the task lists.
    </description>
    <role-name>taskworker</role-name>
  </security-role>
  • Save the file.
  • Navigate to  /jboss-eap-6.1/bin folder
  • Run the ./add-user.sh and add a new user and assigned the newly created role to the user.


  • Restart the EAP server and log in to BPM Business  Central using the newly created role userid /password.

Posted by at

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)