Ends in:
0 DAY
9 HRS
55 MIN
23 SEC
Ends in:
0 D
9 H
55 M
23 S
Open Closed

Remove or disable certain Commercial features. #5866


User avatar
0
joe@tronactive.com created
  • ABP Framework version: v7.3.3
  • UI Type: Blazor Server
  • Database System: EF Core SQL Server
  • Tiered (for MVC) or Auth Server Separated (for Angular): No not tiered

I am looking for some guidance on how to remove some functionality or at least disable it. Our web app is only used within our company and not accessible outside our Azure Tenant. Our application is going through a pen test with a 3rd party company, gearing up for approval on being launched. I want to remove as much un-needed functionality as I can to reduce attack surface for the pen testers. The application will be using authentication into our Azure Active Directory. In production i will have it turned off so the user cannot register, or login with a local account. Only external accounts using Azure Active Directory. Note that it isn't just about creating roles to hide things from the UI either as they will be pen testing with a Admin account along with other roles too.

  • The application is NOT multi-tenant. But I do already have this disabled.
  • I want to remove the Linked Accounts functionality. No need for this.
  • Remove Authority Delegation.
  • Disable UI Account management
  • Remove Organization Units feature
  • Hide basically all Settings UI.

I am guessing you are getting the point. Any guidance on how I can reduce this functionality of the things I have mentioned and if there is a common way I can do it if I missed anything, that would be great.


6 Answer(s)
  • User Avatar
    0
    maliming created
    Support Team Fullstack Developer

    hi

    In this case, you'd better download the source code and disable them in the code.

  • User Avatar
    0
    joe@tronactive.com created

    There is no easier way to do that? I don't have access to all of the source code and I would hate to manage the custom code changes.

  • User Avatar
    0
    maliming created
    Support Team Fullstack Developer

    Currently there is no such design, you can only change the source code.

  • User Avatar
    0
    joe@tronactive.com created

    Of the things I listed. What are the modules I should focus on?

  • User Avatar
    0
    maliming created
    Support Team Fullstack Developer
    • Remove Authority Delegation.
    • Disable UI Account management
    • Remove Organization Units feature
    • Hide basically all Settings UI.

    These features exist on Account.Pro module and setting-management module

  • User Avatar
    0
    joe@tronactive.com created

    Thank you very much

Made with ❤️ on ABP v9.1.0-preview. Updated on December 05, 2024, 12:19