I have some question that:
1.I have a question to you about openflow. I have researched OpenFlow and want to assign permissions to robots based on different accounts. In the latest version on GitHub, is there support for this feature? For example, can account “test1” run “bot1” created by account “test2”?
2.I noticed there is a “role” section on the website. I created a new role, but it doesn’t seem to grant any permissions. Can you explain more about this feature?
You can create a role, add the two robot users to the role, then add the role to the project ( select the project in OpenRPA, click the permissions button, then add the role and select the permissions you want for it )
When you add a robot user to a role you need to signout and backin on each robot to make the role member ship take affect
1 Like
Oh, I see it. But I have some more question to you that:
- Can I grant permissions to individual bots per user instead of by role?
- I see that our application allows integration with multiple login methods such as Office 365 and Gmail. However, I don’t see the latest code on the project’s master branch. Moreover, I want to use LDAP in my project. Is that feasible?
Thanks
- yes, but then you need to update the permissions every time you need to add/remove a user, using a role is more efficient for that.
- We use passportjs for auth, and i see they have a LDAP provider, but generally I’m against people typing in username and password to opencore. You should always strive to use federation for auth. For that reason, i would most likely say no, to adding ldap as an authentication provider for opencore.
- No, we use main branch, for latest stable. And version branches for development ( it’s a small team, so having feature branches, that we merge to main, does not make sense to us at the moment )
1 Like
Ok, I got it. But I still want to integrate LDAP into my system. How can I do that? Can you provide some guidance? Does OpenFlow have middleware to support this?
Thanks
- Use an IdP that support ldap and setup federation with that under Providers in OpenFlow.
- You can implement the ldap passport provider in the source code and send a Pull Request with it.
- I had another request for this lately, so I’ve added it to the backlog of things to implement at some time, but i cannot give any estimate on when we will get to it. Depends on request from paying customers and our internal roadmap.
- If you have a budget, you can also reach out to us to get a quote, for us to put a high priority on this.
I have a task that needs to be done, which is assigning permissions to bots based on roles. However, all power should be centralized to a single main role, which is admin. Can I modify the code to achieve this?
Currently, any account can create bots and even create users from both OpenRPA and OpenFlow. Is there a way to unify this into a single place for easier management?
My project only wants a single place for management rather than distributing permissions across multiple access points in the system.
For example, I provide them with a link to OpenFlow with a properly assigned account, but they can still download OpenRPA, create an account, and reassign permissions.
I don’t want that to happen.
I am really sorry, but I do not understand your question
- No account can create bots, unless you allow them to. Can you please explain what you did, why it did not work, and what you expected?
- What do you mean by a single place for management? OpenFlow IS the central place… or are you asking if you can use an external system (like role management from Active Directory)?
- Yes, anyone can download OpenRPA; it’s public on GitHub. Or do you mean they can download OpenRPA workflows? Again, no one can download another person’s workflows unless you give them permissions to it, and YOU define if they can only read, update, or have full control over the objects
This topic was automatically closed 7 days after the last reply. New replies are no longer allowed.