Develop > Presentation layer > WebSphere Commerce integration with WebSphere Portal > Integrate WebSphere Commerce Extended Sites with WebSphere Portal


Synchronize WebSphere Portal access control with WebSphere Commerce roles

It is covered how WebSphere Portal restricts user access by using Realm with Virtual Portal, and as well on how WebSphere Portal maintains resource level access control using role type assignment. This access right control now relates to the WebSphere Commerce roles and organization hierarchy.

The concept used in WebSphere Commerce roles and organizations is very different from the concept of WebSphere Portal resource level access control, it is impossible to come up with a general pattern to synchronize the user access rights between WebSphere Commerce and WebSphere Portal in real time. However, by applying a few restrictions and assumption to the deployment model, the synchronization scope can be dramatically reduced so that at least some typical access right scenarios can be synchronized. The following are a few assumptions required to be made when synchronizing WebSphere Commerce roles with WebSphere Portal's access rights:

By considering the preceding example:

  1. In WebSphere Commerce, a user has been granted with a Registered Customer role against the Seller A-1 organziation.

  2. Because Seller A-1 owns Store A-1, the user can access Store A-1.

  3. In WebSphere Portal, Store A-1 is mapped to Virtual Portal A, whereas the Registered Customer role of Seller A-1 can be mapped to WebSphere Portal member group SellerA1-RC.

  4. From a top level page Home of Virtual Portal A, a WebSphere Portal role type of User@Home is created and granted to WebSphere Portal member group SellerA1-RC.

  5. When this user logs on to Virtual Portal A, the user should be able to access the Home page, as well as all of its sub-pages due to the default inherited behavior of WebSphere Portal role types.


+

Search Tips   |   Advanced Search