Activities of "eric_pulaski"
I've noticed that there is a FindByNameOrEmailAsync() method that takes a tenant ID and userEmaiOrUserName paramater. This is apparently used by the chat service? [I think some "friendship" class or method, if I remember correctly.]
Allowing somone (i.e., a potential hacker) to validate the tenant id and user's email, where they then only need to guess the password, is typically not a good security practice. Is this a potential security vulnerability? Has anyone brought this up before and/or have ASP.NET Zero customers passed security reviews with this API being available?
Thanks in advance for a reply.
-Eric
We have a need to add an addition attribute (integer) for each member of each role of an Organization Unit. Is it safe for us to just add a new column into the AbpUserOrganizationUnits table, or could there be unintented consequences? For example, problems upgrading to a new version of ASP.NET Zero.
Thanks in advance for your help.
-Eric
I'm running into an issue and looking for the best path forward. ASP.NET Zero has two language keys related to the user's name: Name and Surname. In the United States, we usually call these "First Name" and "Last Name", which is how I want the fields labeled when a user edits his or her properties. Howewer, the Name language Key is also used in other areas to refer to the user's full name. For example, when adding members to an Organizational Unit, the Name languae key is used for the title of the colum which has what I would call the users "Full Name" (for me, that's "Eric Pulaski" - my first name + last name.
Why is the language Key Name used to refer at some times to the user's first name, and at other times to the user's full name? Why is there no language key for "First Name" separate from "Name"?
To solve this problem, I was thinking about creating a new language key called 'FirstName' and changing the code to use this language key for the label of the "first name" fields when (1) the user edit's his or her own profile and when (2) the admin user edit's another user's profile info from the admin menu. Other than these 2 places, is there anywhere else that first name is separated out from last name in ASP.NET Zero. Is this the best way to solve this problem?
Thanks in advance for any help. -Eric
If I pin my chat view, I get all kinds of UI glitches. Is this a known problem, or something we may have messed up on our end? For example, if I pin the chat panel, the rest of the ASP.NET Zero portal is disabled, and if I hover over the pin icon, or parts of the chat panel, the chat panel totally goes away - so I've got to click the pin quickly to unpin before the panel disappears! I would think that pinning the chat panel keeps it in place while I can still use the rest of the portal, but that does not happen.
(we are on ASP.NET CORE & Angular, ASP.NET Zero v8.7.0, and .NET Core 3.1)
I want to change the timezone descriptions (that my users choose) from the current Microsoft Time Zone "Name of Time Zone" to the "Time" as shown in https://support.microsoft.com/en-us/help/973627/microsoft-time-zone-index-values. For example change from "Central Standard Time" to "(GMT -06:00) Central Time (US and Canada)".
Is that possible with ASP.NET Zero (without major surgery to the code), or might there be unintended consequences?
Thanks in advance for your help.
-Eric
Is there any way with ASP.NET Zero to specify "per user" pricing for an Edition? Seems like the included pricing/billing options are pretty basic, so I'm trying to see if the "out-of-the-box" ASP.NET Zero billing will work for me, or if/when I will need to go to something more complicated, such as Chargebee.
Thanks in advance for a reply.
-Eric
Is there any way I can used OU's and Roles to define a user's role at the OU level. For example, I may have a user who is a "manager" in the Marketing OU but is just a "read only users" in the Sales OU. It does not look like roles and OU's work this way in ASP.NET Zero, but I was wondering if you had any creative suggestions without having to do major surgery to the platform?
Thanks in advance for your help.
-Eric
I've had this problem happen to me a couple of times. The last time it happened, I was signed in as admin, swtiched to sign in as another tenant, then went back to my account and now I can't see any tenants or settings. I've logged out and back in, but can't seem to get back to the normal portal. See attached screen shot. I'm running the latest version of Microsoft Edge browser.
Is this some kind of a cookie problem? Any idea what's causing this? Thanks in advance for your help. [I dragged and dropped the picture below.]
I've got a couple of questions around User Email/Name and Multi-Tenancy: (I plan to have a single DB with multiple tanants sharing the same DB, if that matters)
I would like the user's email to be their "sign in" ID for my application, and I don't want a separate User Name. Is that easily workable with ASP.NET Zero, or does that not really work with ASP.NET Zero?
I want the same user to be a member of multiple tenant orgarizations. Do User Names or Email addresses have to be unique across tenants? Can my user sign in once, and then pick their tenant from among the different Tenant companies that they are a member of? I really don't want to have separate logins each time they switch to a new Tenant. For example, I'm building a budget app. My users will invite their accoutants to their account. An accountant may have mulitple clients that are using my app. I want the accountant to login once, then pick the client (the Tenant) they want to get to. How do I manage that?
Thanks in advance for you help.
-Eric