Details
-
Type:
Task
-
Status:
Done
(View Workflow)
-
Priority:
Normal
-
Resolution: Unresolved
-
Affects Version/s: None
-
Fix Version/s: None
-
Component/s: UCMDB
-
Customer:Mobinets
-
Epic Link:
Description
User Permission: add permission check on data level
Attachments
Activity
| Field | Original Value | New Value |
|---|---|---|
| Epic Link | NEPX-14495 [ 123331 ] |
| Gantt Options | Milestone (set to milestone: having a due date but zero effort) | |
| Planned Start | 2027-01-08 24:00 (milestone: set planned start date to due date) | |
| Planned End | 2027-01-08 24:00 (milestone: set planned end date to due date) |
| Summary | Route Builder reports - Show route logical view for node | User Permission: add permission check on data level |
| Description | Route Builder reports - Show route logical view for node |
User Permission: add permission check on data level
|
| Assignee | Tayeb Gasmi [ tgasmi ] | Khaled Khalil [ kkhalil ] |
| Assignee | Khaled Khalil [ kkhalil ] | Fares Jebali [ fjebali ] |
-
- Time Spent:
- 7 hours
-
Implemented user data-level permissions on attributes in the UCMDB database.
These attributes belong to Site and are used during CSV import/export operations.
Performed debugging to identify issues related to attribute permissions.
Fixed several problems and adjusted the logic to ensure correct permission handling.
| Remaining Estimate | 0 minutes [ 0 ] | |
| Time Spent | 7 hours [ 25200 ] | |
| Worklog Id | 293727 [ 293727 ] |
| Baseline Start | 2027-01-08 24:00 (set baseline based of initial work logging) | |
| Baseline End | 2027-01-08 24:00 (set baseline based of initial work logging) |
-
- Time Spent:
- 7 hours
-
Analyzed the structure of the user permission cache
Connected the permission system with the data provider layer
Ensured proper loading of user permissions at runtime
Investigated and resolved null pointer exceptions in permission checks
Identified missing action configurations in the system
| Time Spent | 7 hours [ 25200 ] | 1 day, 6 hours [ 50400 ] |
| Worklog Id | 294152 [ 294152 ] |
-
- Time Spent:
- 1 day, 6 hours
-
Examined JSON cache structure for UCMDB modules
Mapped relationships between global vs specific permissions
Corrected buildPermissionPredicateForModuleAndAction() logic
Added global permission check before calling getSpecificallyAllowedItems()
Implemented exception handling to prevent crashes
Developed queries to verify zone existence in database
Created PL/SQL validation script for bulk ID checking
| Time Spent | 1 day, 6 hours [ 50400 ] | 3 days, 4 hours [ 100800 ] |
| Worklog Id | 294662 [ 294662 ] |
-
- Time Spent:
- 7 hours
-
add modify action
control edit button based on modify action
resolve some bugs
-
- Time Spent:
- 7 hours
-
debug nep to know how permission data level in get bts handled
write code implementation in ucmdb
verify the delete action for zone and region
resolve some bugs
| Time Spent | 3 days, 4 hours [ 100800 ] | 4 days, 3 hours [ 126000 ] |
| Worklog Id | 295030 [ 295030 ] |
| Time Spent | 4 days, 3 hours [ 126000 ] | 1 week, 2 hours [ 151200 ] |
| Worklog Id | 295103 [ 295103 ] |
-
- Time Spent:
- 1 day
-
modify save button status for sites, zones, bsc based on permission
implement get bsc Based on permission
resolve problems
| Time Spent | 1 week, 2 hours [ 151200 ] | 1 week, 1 day, 2 hours [ 180000 ] |
| Worklog Id | 295264 [ 295264 ] |
-
- Time Spent:
- 1 day
-
refractor filter permission to be generic to all network element
add permission filter to all network element
start to make full exemple to test the implemenation
| Time Spent | 1 week, 1 day, 2 hours [ 180000 ] | 1 week, 2 days, 2 hours [ 208800 ] |
| Worklog Id | 295392 [ 295392 ] |
-
- Time Spent:
- 1 day
-
implemneted view site cordination action
reslove bugs
prepare test case
| Time Spent | 1 week, 2 days, 2 hours [ 208800 ] | 1 week, 3 days, 2 hours [ 237600 ] |
| Worklog Id | 295490 [ 295490 ] |
-
- Time Spent:
- 1 day
-
debug nep and find a bug a check later
implementation of version management permission
| Time Spent | 1 week, 3 days, 2 hours [ 237600 ] | 1 week, 4 days, 2 hours [ 266400 ] |
| Worklog Id | 295666 [ 295666 ] |
-
- Time Spent:
- 1 day
-
fixed some case testing like user have no permission to any version
debug code
resolve some bugs
| Time Spent | 1 week, 4 days, 2 hours [ 266400 ] | 2 weeks, 2 hours [ 295200 ] |
| Worklog Id | 295846 [ 295846 ] |
| Attachment | UCMDB_Permission_Technical_Report_v2.docx [ 131707 ] | |
| Attachment | permission_hierarchy_report.pdf [ 131708 ] |
| Status | To Do [ 10001 ] | Done [ 10000 ] |
| Summary | User Permission: add permission check on data level | ACE-511/User Permission: add permission check on data level |
| Transition | Time In Source Status | Execution Times | Last Executer | Last Execution Date | |||||
|---|---|---|---|---|---|---|---|---|---|
|
69d 18h 15m | 1 | Fares Jebali | 03/Apr/26 10:32 AM |
|
Links Hierarchy |
 Documentation
|
Hi Team,
I have uploaded the technical report related to handling permission at the data level. Please review it and provide your feedback, especially regarding the implementation approach, security considerations, and any potential improvements.
Let me know if anything needs clarification or further details.
Thanks.