Controlling access for WebSphere Commerce Accelerator

We can update the access control policies for WebSphere Commerce Accelerator to control access to the tool and grant users access to the tool for a store type.

Procedure

1. Modify the appropriate WebSphere Commerce Accelerator XML file to grant the role access to the tool menus. Open the XML file for our particular store type, for instance, if the store type is a B2B store, modify the following file:

   workspace_dir/WC/xml/tools/common/CommerceAcceleratorB2B.xml

2. Add the user role to the appropriate access control policy. Based on the store type, a corresponding access control policy exists to enable the user to access the WebSphere Commerce Accelerator menus. For example, if the store type is a B2B store, the following access control policy is available to grant access to the tool menus.

   <Policy Name="B2BCSAViewUsersForOrgExecuteB2BCSAViewActionsOnStoreEntityResource"
            OwnerID="RootOrganization"
            UserGroup="B2BCSAViewUsersForOrg"
            ActionGroupName="B2BCSAView"
            ResourceGroupName="StoreEntityDataResourceGroup"
            PolicyType="groupableTemplate">
       </Policy>

   To allow a new user role to access a store of this store type, add the role to the implicit conditions (MBRGRPCOND.CONDITIONS) of the corresponding member group CSAViewUsersForOrg.

3. Depending on the WebSphere Commerce Accelerator function that users must access, we must configure the corresponding access control policies. Configure the policies so the new role can access the appropriate commands, views, and data beans.