Your achievements

Level 1

0% to

Level 2

Tip /
Sign in

Sign in to Community

to gain points, level up, and earn exciting badges like the new
BedrockMission!

Learn More

View all

Sign in to view all badges

Named rights in Adobe Campaign Classic

Avatar

Avatar
Validate 1
Level 1
WesleyXP
Level 1

Likes

0 likes

Total Posts

15 posts

Correct Reply

2 solutions
Top badges earned
Validate 1
Affirm 1
View profile

Avatar
Validate 1
Level 1
WesleyXP
Level 1

Likes

0 likes

Total Posts

15 posts

Correct Reply

2 solutions
Top badges earned
Validate 1
Affirm 1
View profile
WesleyXP
Level 1

06-08-2020

Hi,

 

We're trying to limit the number of operators with administrator clearance. However, it seems like lot's of functionalities actually require administrator rights, which isn't okay.

 

Therefore we are wondering if we can create a specific named rights for the following two actions so that we can assign those two rights to the operator groups needing them, and thus preventing those operators from having access to everything:

  • Offer validation
  • Package management
    We are aware package management is usually done by admins, but in our case it's not feasible.

Is there anyone knowing if this is possible and if so, how this can be achieved?

 

Wesley

 

 

 

 

Adobe Campaign Classic Named rights

Accepted Solutions (1)

Accepted Solutions (1)

Avatar

Avatar
Contributor
MVP
wodnicki
MVP

Likes

935 likes

Total Posts

1,061 posts

Correct Reply

495 solutions
Top badges earned
Contributor
Shape 1
Give Back 100
Give Back 50
Give Back 25
View profile

Avatar
Contributor
MVP
wodnicki
MVP

Likes

935 likes

Total Posts

1,061 posts

Correct Reply

495 solutions
Top badges earned
Contributor
Shape 1
Give Back 100
Give Back 50
Give Back 25
View profile
wodnicki
MVP

06-08-2020

Hi,

 

A package management right would effectively grant root access, e.g. a user could make a package:

<package author="Z3r0 c00l" buildNumber="1" buildVersion="6.7">
  <entities schema="xtk:operatorGroup">
    <operatorGroup>
      <group name="admin"/>
      <operator name="myselfThanks"/>
    </operatorGroup>
  </entities>
</package>

And upgrade their account without any real effort.

 

So with security removed as a requirement, it's a matter altering the UI to check for the new rights:

  • Navigation hierarchy for package import menu item, HasNamedRight('PACKAGE_IMPORT')
  • JSSP/js lib for offer validation

 

Thanks,

-Jon

 

Answers (0)