cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Powertool site login with employee throws filter chain exception

Former Member

on ‎01-25-2017 4:35 AM

0 Kudos

hi,

I am using Hybris 6.0 with powertool site. My login functionality is working fine if i enter b2b customer id and password. For testing purpose i tried to enter id and password of an employee, If the id and password is correct it shows a spring filter chain exception. Please help me to solve the issue. How to Stop employee from login, why spring filter chain exception is thrown.

i have added 

 <bean id="b2bUserGroupProvider" class="de.hybris.platform.b2bacceleratoraddon.security.impl.DefaultB2BUserGroupProvider"
         scope="tenant">
         <property name="userService" ref="userService" />
         <property name="b2BCustomerService" ref="defaultB2BCustomerService" />
         <property name="authorizedGroups">
             <set value-type="java.lang.String">
                 <value>b2bcustomergroup</value>
                 <value>b2bmanagergroup</value>
                 <value>b2bapprovergroup</value>
                 <value>b2badmingroup</value>
             </set>
         </property>
         <property name="authorizedGroupsToCheckOut">
             <set value-type="java.lang.String">
                 <value>b2bcustomergroup</value>
             </set>
         </property>
     </bean>
Show replies
Show replies
Answer

Accepted Solutions (0)

Answers (2)

Answers (2)

Former Member
‎02-27-2017 10:16 PM
0 Kudos

Hi Lalit! I have more information on fixing this issue:

BadCredentialsException is throw if the user that tries to login does not belong to CUSTOMER_USERGROUP, and the frontend handles the exception and display "Your username or password was incorrect"

Fix is implemented in AbstractAcceleratorAuthenticationProvider. The key part is:

 if (!getUserService().isMemberOfGroup(userModel, getUserService().getUserGroupForUID(Constants.USER.CUSTOMER_USERGROUP)))
         {
             throw new BadCredentialsException(messages.getMessage(CORE_AUTHENTICATION_PROVIDER_BAD_CREDENTIALS, BAD_CREDENTIALS));
         }

Hope this helps!

Bill

Show replies
Show replies
Former Member
‎01-25-2017 6:54 PM
0 Kudos

Hi Lalit! Sorry you have encountered this problem. It's a known issue that we are trying to fix it soon. When we fix it, i'll post the solution here.

At first glance, this is an issue of class casting down in commerceservices level, because of type EmployeeModel. We need to investigate to be sure, but that might help you.

Product Manager for Accelerator

Show replies
Show replies
Former Member
‎03-28-2017 7:28 PM
0 Kudos

Hi Bill - Do we have a Fix available Yet ? or any workaround ?

priti_mittal
Advisor
Advisor
‎11-24-2017 8:17 AM
0 Kudos

Hi Bill , Employee can not login into Storefront. But sometimes there is a need of business where Sales Rep who is the employee in system is required to login into storefront to place the order . For such cases is there any provision or way to support employee login into storefront . Or Any other advise.

Ask a Question