User has restricted menus and functions to READ only. Example Request or ProductUsing API calls with the same user the same data can be modified. Expectation is: since the user has READ only this should not be possibleHow to you handle the roles /rights in order to avoid this issue?Can you reproduce also in your systems?We use FSM 6.5Thank you already for any useful feedback!
We are currently changing user password from the PORTAL via the API ENDPOINT using:<update_person><person><person_id>****</person_id><password>*******</password><insert_update /></person><authentication><session_info><token_id>xxxxxxxxxxxxxxxxxxx</token_id><session_id>xxxxxxxxxxxxxxxxxxxxxxxxxxxxxx</session_id></session_info></authentication></update_person>This is working fine - means it is changing the password - but is bypassing especially the system check if the password was reused:PASSWORD_REUSE_LOCK_DAYS 365From "PERSON" screen - this check is done and works fine.Via the API endpoint we are unable to trigger the same checks as done from the screen.Testing with FSM 6.5 and 6.1. Any idea how to ensure the password is checked as from log-in in Smartclient? Thanks!
Already have an account? Login
No account yet? Create an account
Enter your E-mail address. We'll send you an e-mail with instructions to reset your password.
Sorry, we're still checking this file's contents to make sure it's safe to download. Please try again in a few minutes.
Sorry, our virus scanner detected that this file isn't safe to download.