Top
Top
LibraryEASYCommerce Reference ManualUsers/AccountUsers
User Authorization Types
Inactive Users
User Properties
User Login Authentication

User Authorization Types

Each user that is created exists as a record in the EPUsers table. One of the columns in that table is UserAuthorizationType. This stores the user’s authorization type as determined by the admin. This value is used to group users into categories. The admin can then grant or restrict access to various webpages on the site based on these categories.

There are two main categories for these types: Customer and Internal.

Customer types will exist under an account that can be used to retrieve prices and create orders. This account is a valid address book number in JDE.

Internal types exist under an internal account that cannot retrieve prices or create orders on their own. These users are intended to be admins, IT personnel, customer service reps, marketing personnel, etc. These users can change aspects of the site, like marketing carousels or active promotions, for the customer type users.

Base User Authorization Types

User Authorization types can be edited based on client needs, but there are default types that are build into base EASYCommerce.

User Authorization Type

Description

Consumer

Consumer - B2C

Customer_AP

Customer : Accounts Payable

Customer_BasicAccess

Customer : Basic Access

Customer_EASYPay

Customer : EASYPay

Customer_FullAccess

Customer : Full Access

Customer_OrderEntry

Customer : Order Entry

Customer_SelfService

Customer : Self-Service

Internal_Admin

Internal : Administrator

Internal_AR

Internal : AR

Internal_CustomerService

Internal : Customer Service

Internal_EASYPay

Internal : EASYPay Account

Internal_EASYPayAdmin

Internal : EASYPayAdmin

Internal_IT

Internal : IT

Internal_Management

Internal : Management

Internal_Marketing

Internal : Marketing

Internal_SalesRep

Internal : Sales Representative

Controlling Access

The admin of the site has access to two pages: Work with Customer Roles and Work with Internal Roles. These pages allow the admin to view the current access for each of the defined user authorization types.

From these pages the admin can view all the webpages that are available through the site menu that the user could possibly see. The admin can then check or uncheck the pages to control the user authorization type’s access to the corresponding pages.

The pages available to Customer type users is different from the pages for Internal users. This is because there are two different menus maintained in EASYProcess. A menu is an entity which is used as container for all the WebPages that will display. This categorizes WebPages into categories of who should see them. The menu has categories just like the users: Customer and Internal.

When a new webpage is made, the developer must know who the user of this webpage will be and assign it to exist under one of the menu categories. Once a webpage is defined under a menu, the admin will see it in “Work with Customer/Internal Roles” (the list of pages to give access to).

The “Work with Customer/Internal Roles” page in the Admin panel (the list of pages to give access to) will be a list of all the pages that exist under the menu. For an internal user authorization type, this will be a list of all the pages under the Internal menu. For a Customer user authorization type, this will be a list of all the pages under the Customer menu.


Inactive Users

Each user that is created exists as a record in the EPUsers table. One of the columns in that table is UserStatus. This stores either “Active” or “Deactivated” as a value. A user can be manually deactivated by an Admin who wants to limit access to certain UserIds. A user will also become deactivated if too many incorrect password attempts are made.

When a user becomes deactivated, login is restricted. The user will be shown a message on the login screen informing them they cannot login. The message may vary depending on the deactivation reason. The deactivation reason is also stored in the EPUsers table in a column called “DeactivationReason”.

An admin can reactivate users with a webpage called “Inactive Users”. This lists all the deactivated users, the date they became inactive, and the reason. It also displays some information about the user such as their authorization type and email. Next to each user listed, is a button that allows the admin to reactivate the user. This changes the value stored in the UserStatus column back to Active and clears out the deactivation date and reason columns. Once reactivated, the user is free to login again without restriction


Powered by EASYProcess (© 2019 K-Rise Systems, Inc).