Activities of "maliming"

hi

The license team wants to get a username&password and project to reproduce the problem.

can you share them? liming.ma@volosoft.com

Thanks.

hi

For the endpoints that have [Authorize], you can refer to

https://github.com/abpframework/abp/blob/dev/framework/src/Volo.Abp.Authorization/Volo/Abp/Authorization/AbpAuthorizationModule.cs#L35-L36

https://github.com/abpframework/abp/blob/dev/framework/src/Volo.Abp.Authorization.Abstractions/Volo/Abp/Authorization/PermissionRequirement.cs

https://github.com/abpframework/abp/blob/dev/framework/src/Volo.Abp.Authorization.Abstractions/Volo/Abp/Authorization/PermissionRequirementHandler.cs

https://github.com/abpframework/abp/blob/dev/framework/src/Volo.Abp.Authorization/Volo/Abp/Authorization/AbpAuthorizationPolicyProvider.cs#L28

For the endpoints that allow anonymity, there is no other way.

hi

You can check out these two documents to learn how to define permissions and initialize some permissions for tenants.

https://docs.abp.io/en/abp/latest/Authorization https://docs.abp.io/en/abp/latest/Data-Seeding

Can I disable the out-of-the-box admin role?

You can override the IdentityDataSeeder to disable the admin role.

hi

You can add ASP Net Core middleware that checks whether the requested endpoint are specific URLs if the current user name is ExternalUser.

hi

What is your Lepton package version?

You can try to use Version="2.2.*-*" /> as lepton package.

hi

1. I would like to delete the permission groups above. What are the options I have for doing that?

See https://docs.abp.io/en/abp/latest/Authorization#changing-permission-definitions-of-a-depended-module

2. I would like to define the permissions of a given role. What are the options I have for doing that?

group.AddPermission("MyPermission6").WithProviders(RolePermissionValueProvider.ProviderName);

https://github.com/abpframework/abp/blob/dev/framework/src/Volo.Abp.Authorization.Abstractions/Volo/Abp/Authorization/Permissions/PermissionDefinition.cs#L140-L148

https://github.com/abpframework/abp/blob/dev/framework/src/Volo.Abp.Authorization.Abstractions/Volo/Abp/Authorization/Permissions/PermissionDefinition.cs#L31-L35

3. How do I ensure that new tenants being created always get the latest set of default permissions for the application?

The template project already did this.

See MyProjectNameTenantDatabaseMigrationHandler

https://github.com/abpframework/abp/blob/dev/modules/permission-management/src/Volo.Abp.PermissionManagement.Domain/Volo/Abp/PermissionManagement/PermissionDataSeeder.cs#L28-L52

4. Can I disable the out-of-the-box admin role?

Yes.

hi

If the template project works, can you share a minimal project to reproduce your error?

liming.ma@volosoft.com

Thanks.

hi

https://github.com/advisories/GHSA-mrr8-v49w-3333

We will upgrade all packages except sweetalert2

Please follow https://github.com/abpframework/abp/pull/19356

hi

You can use different domains for your websites. The cookies are independent. eg: https://readme.localtest.me/