日韩性视频-久久久蜜桃-www中文字幕-在线中文字幕av-亚洲欧美一区二区三区四区-撸久久-香蕉视频一区-久久无码精品丰满人妻-国产高潮av-激情福利社-日韩av网址大全-国产精品久久999-日本五十路在线-性欧美在线-久久99精品波多结衣一区-男女午夜免费视频-黑人极品ⅴideos精品欧美棵-人人妻人人澡人人爽精品欧美一区-日韩一区在线看-欧美a级在线免费观看

歡迎訪問 生活随笔!

生活随笔

當前位置: 首頁 > 编程资源 > 编程问答 >内容正文

编程问答

SAP Commerce Cloud OCC User Role

發布時間:2023/12/19 编程问答 44 豆豆
生活随笔 收集整理的這篇文章主要介紹了 SAP Commerce Cloud OCC User Role 小編覺得挺不錯的,現在分享給大家,幫大家做個參考.

官方文檔

  • Principal: A user who gains access to the application is called a principal. It does not have to be a real user, it can be an external system like a backend or frontend application, or a mobile application. Principal 不一定是一個真實的用戶,也可以是來自外部系統的后臺或者前臺應用,或者是一個移動應用。

  • Authentication means checking provided credentials. If credentials are valid, then the proper roles are assigned to a principal.

Authentication - 認證,意思是檢查principal提供的credentails,如果有效,就頒發對應的role給principal.

  • Authorization: means deciding if a principal can perform a given action. 決定一個principal是否能夠執行某項操作。

This is determined based on the assigned roles of the principal and also on other constraints, for example secure communication channel.

根據principal分配的roles或者其他限制來決定。

The authorization process takes place separately in two layers:

  • HTTP layer
  • Service (business) layer

    • OCC User Roles

    The security of OCC calls is based mainly on user roles. These roles are assigned to the principal depending on the authentication type:

    參與OAuth認證的principal,可以分配不同的role:

  • Anonymous:A non-authenticated principal is assigned a built-in ANONYMOUS role by default. 默認的role

  • Clients:Every client application that was authenticated using an OAuth2 token in the client credentials flow is assigned a specific role depending on the client definition.

    • 每個使用OAuth 2 token 參與client credentials flow認證的客戶端應用,都分配一個Clients role.

    When defining the clients remember to assign either the ROLE_CLIENT or ROLE_TRUSTED_CLIENT to them, because these roles allow client access to the ycommercewebservices extension.

    ROLE_CLIENT 或者 ROLE_TRUSTED_CLIENT,允許客戶端使用 ycommercewebservices extension.

  • Customers: Users who were authenticated using the OAuth2 token in the password flow, are assigned a list of roles that are received from a service layer in the same way as it works in the whole application.

    • By default, CUSTOMERGROUP and CUSTOMERMANAGERGROUP roles are used.

  • Guests: Anonymous users who provided their own e-mail address. It can be done by calling /customers/current/guestlogin in v1 or /users/anonymous/carts/{guid}/email in v2.

    • For such users, a built-in GUEST role is assigned.

    總結

    以上是生活随笔為你收集整理的SAP Commerce Cloud OCC User Role的全部內容,希望文章能夠幫你解決所遇到的問題。

    如果覺得生活随笔網站內容還不錯,歡迎將生活随笔推薦給好友。