This change allows you to specify which role is allowed to login to the panel

Add the element ExcludedRolesToLogin tp the SiteSettings.config and specify comma separate which roles are not allowed to login to the panel. e.g.: <ExcludedRolesToLogin>Administrator,Reseller</ExcludedRolesToLogin> By doing this you can eliminate the attack surface by publishing the portal twice. One for the organization administrators and an internal one for the adminsitrators and reseller admins
2012-07-11 20:28:33 +04:00 · 2012-07-11 20:28:33 +04:00 · 80672a555f
commit 80672a555f
parent 37af5eceac
4 changed files with 41 additions and 6 deletions
--- a/WebsitePanel/Sources/WebsitePanel.EnterpriseServer.Base/Common/BusinessErrorCodes.cs
+++ b/WebsitePanel/Sources/WebsitePanel.EnterpriseServer.Base/Common/BusinessErrorCodes.cs
@ -63,6 +63,7 @@ namespace WebsitePanel.EnterpriseServer
        public const int ERROR_USER_WRONG_PASSWORD = -110;
        public const int ERROR_INVALID_USER_NAME = -111;
        public const int ERROR_USER_ACCOUNT_NOT_ENOUGH_PERMISSIONS = -112;
+        public const int ERROR_USER_ACCOUNT_ROLE_NOT_ALLOWED = -113;
        #endregion

        #region Packages