1、设置用户组
1 <moqui.security.UserGroup userGroupId="SANG_ENTERPRISE_ADMINS" description="管理员组"/> 2 <moqui.security.UserGroup userGroupId="SANG_ENTERPRISE_USERS" description="用户组"/>
2、设置用户账号和所属组
<moqui.security.UserAccount userId="USER_SANG_MALONG" username="SANG_MALONG" passwordHashType="SHA" currentPassword="16ac58bbfa332c1c55bd98b53e60720bfa90d394" userFullName="马龙" lastUpdatedStamp="1471235407000" timeZone="Asia/Shanghai" locale="zh_CN" passwordHint="framework name, lowercase" emailAddress="MALONG@qq.com" requirePasswordChange="N" disabled="N" partyId="PER_SANG_MALONG"> <groups userGroupId="SANG_ENTERPRISE_ADMINS" fromDate="1471235407000" lastUpdatedStamp="1471235407000"/> <groups userGroupId="SANG_ENTERPRISE_USERS" fromDate="1471235407000" lastUpdatedStamp="1471235407000"/> </moqui.security.UserAccount>
3、设置权限
1 <artifactGroups artifactGroupId="SANG_APP" description="SANG App (via root screen)"> 2 <artifacts artifactTypeEnumId="AT_XML_SCREEN" inheritAuthz="Y" artifactName="component://sang-3plservices/screen/ZcApp.xml"/> 3 <artifacts artifactTypeEnumId="AT_SERVICE" artifactName="sang..*" nameIsPattern="Y" inheritAuthz="Y"/> 4 <authz artifactAuthzId="SANG_APP_ADMIN" userGroupId="ADMIN" authzTypeEnumId="AUTHZT_ALWAYS" authzActionEnumId="AUTHZA_ALL"/> 5 6 <authz artifactAuthzId="SANG_APP_SANG_3PLS_PLATFORM_ADMINS" userGroupId="SANG_3PLS_PLATFORM_ADMINS" authzTypeEnumId="AUTHZT_ALWAYS" authzActionEnumId="AUTHZA_ALL"/> 7 </artifactGroups>
3、设置组权限
<moqui.security.ArtifactAuthz artifactAuthzId="SANG_APP_SANG_SANG_ADMINS" userGroupId="SANG_ENTERPRISE_ADMINS" lastUpdatedStamp="1471393742969" authzActionEnumId="AUTHZA_ALL" artifactGroupId="SANG_APP" authzTypeEnumId="AUTHZT_ALWAYS" />