private void CreateUsersRol() { Rol usersRole = FindObject <Rol>(new BinaryOperator(nameof(PermissionPolicyRole.Name), Rol.USERS_ROL_NAME)); if (usersRole == null) { usersRole = CreateObject <Rol>(); usersRole.Name = Rol.USERS_ROL_NAME; usersRole.AddObjectPermission <PermissionPolicyUser>(SecurityOperations.Read, "[Oid] = CurrentUserId()", SecurityPermissionState.Allow); usersRole.AddNavigationPermission(@"Application/NavigationItems/Items/Default/Items/MyDetails", SecurityPermissionState.Allow); usersRole.AddMemberPermission <PermissionPolicyUser>(SecurityOperations.Write, nameof(PermissionPolicyUser.ChangePasswordOnFirstLogon), "[Oid] = CurrentUserId()", SecurityPermissionState.Allow); usersRole.AddMemberPermission <PermissionPolicyUser>(SecurityOperations.Write, "StoredPassword", "[Oid] = CurrentUserId()", SecurityPermissionState.Allow); usersRole.AddTypePermissionsRecursively <PermissionPolicyRole>(SecurityOperations.Read, SecurityPermissionState.Deny); usersRole.AddTypePermissionsRecursively <ModelDifference>(SecurityOperations.ReadWriteAccess, SecurityPermissionState.Allow); usersRole.AddTypePermissionsRecursively <ModelDifferenceAspect>(SecurityOperations.ReadWriteAccess, SecurityPermissionState.Allow); usersRole.AddTypePermissionsRecursively <ModelDifference>(SecurityOperations.Create, SecurityPermissionState.Allow); usersRole.AddTypePermissionsRecursively <ModelDifferenceAspect>(SecurityOperations.Create, SecurityPermissionState.Allow); //City usersRole.AddNavigationPermission(City.PATH_NAVIGATION, SecurityPermissionState.Allow); usersRole.AddTypePermissionsRecursively <City>(SecurityOperations.ReadWriteAccess, SecurityPermissionState.Allow); usersRole.AddTypePermissionsRecursively <City>(SecurityOperations.Create, SecurityPermissionState.Allow); //VehicleBrand usersRole.AddNavigationPermission(VehicleBrand.PATH_NAVIGATION, SecurityPermissionState.Allow); usersRole.AddTypePermissionsRecursively <VehicleBrand>(SecurityOperations.ReadWriteAccess, SecurityPermissionState.Allow); usersRole.AddTypePermissionsRecursively <VehicleBrand>(SecurityOperations.Create, SecurityPermissionState.Allow); //VehicleType usersRole.AddNavigationPermission(VehicleType.PATH_NAVIGATION, SecurityPermissionState.Allow); usersRole.AddTypePermissionsRecursively <VehicleType>(SecurityOperations.ReadWriteAccess, SecurityPermissionState.Allow); usersRole.AddTypePermissionsRecursively <VehicleType>(SecurityOperations.Create, SecurityPermissionState.Allow); //VehicleModel usersRole.AddNavigationPermission(VehicleModel.PATH_NAVIGATION, SecurityPermissionState.Allow); usersRole.AddTypePermissionsRecursively <VehicleModel>(SecurityOperations.ReadWriteAccess, SecurityPermissionState.Allow); usersRole.AddTypePermissionsRecursively <VehicleModel>(SecurityOperations.Create, SecurityPermissionState.Allow); //VehicleInsurement usersRole.AddNavigationPermission(VehicleInsurement.PATH_NAVIGATION, SecurityPermissionState.Allow); usersRole.AddTypePermissionsRecursively <VehicleInsurement>(SecurityOperations.ReadWriteAccess, SecurityPermissionState.Allow); usersRole.AddTypePermissionsRecursively <VehicleInsurement>(SecurityOperations.Create, SecurityPermissionState.Allow); //VehicleInsurementDetail usersRole.AddTypePermissionsRecursively <VehicleInsurementDetail>(SecurityOperations.ReadWriteAccess, SecurityPermissionState.Allow); usersRole.AddTypePermissionsRecursively <VehicleInsurementDetail>(SecurityOperations.Create, SecurityPermissionState.Allow); //VehicleDealer usersRole.AddNavigationPermission(VehicleDealer.PATH_NAVIGATION, SecurityPermissionState.Allow); usersRole.AddTypePermissionsRecursively <VehicleDealer>(SecurityOperations.ReadWriteAccess, SecurityPermissionState.Allow); usersRole.AddTypePermissionsRecursively <VehicleDealer>(SecurityOperations.Create, SecurityPermissionState.Allow); //VehicleDealerVehicleBrand usersRole.AddTypePermissionsRecursively <VehicleDealerVehicleBrand>(SecurityOperations.ReadWriteAccess, SecurityPermissionState.Allow); usersRole.AddTypePermissionsRecursively <VehicleDealerVehicleBrand>(SecurityOperations.Create, SecurityPermissionState.Allow); //Person usersRole.AddNavigationPermission(BusinessObjects.Person.PATH_NAVIGATION, SecurityPermissionState.Allow); usersRole.AddTypePermissionsRecursively <BusinessObjects.Person>(SecurityOperations.ReadWriteAccess, SecurityPermissionState.Allow); usersRole.AddTypePermissionsRecursively <BusinessObjects.Person>(SecurityOperations.Create, SecurityPermissionState.Allow); //Employee usersRole.AddNavigationPermission(Employee.PATH_NAVIGATION, SecurityPermissionState.Allow); usersRole.AddTypePermissionsRecursively <Employee>(SecurityOperations.ReadWriteAccess, SecurityPermissionState.Allow); usersRole.AddTypePermissionsRecursively <Employee>(SecurityOperations.Create, SecurityPermissionState.Allow); //Customer usersRole.AddNavigationPermission(Customer.PATH_NAVIGATION, SecurityPermissionState.Allow); usersRole.AddTypePermissionsRecursively <Customer>(SecurityOperations.ReadWriteAccess, SecurityPermissionState.Allow); usersRole.AddTypePermissionsRecursively <Customer>(SecurityOperations.Create, SecurityPermissionState.Allow); //VehicleQuotation usersRole.AddNavigationPermission(VehicleQuotation.PATH_NAVIGATION, SecurityPermissionState.Allow); usersRole.AddTypePermissionsRecursively <VehicleQuotation>(SecurityOperations.ReadWriteAccess, SecurityPermissionState.Allow); usersRole.AddTypePermissionsRecursively <VehicleQuotation>(SecurityOperations.Create, SecurityPermissionState.Allow); //VehiclePolicy usersRole.AddNavigationPermission(VehiclePolicy.PATH_NAVIGATION, SecurityPermissionState.Allow); usersRole.AddTypePermissionsRecursively <VehiclePolicy>(SecurityOperations.ReadWriteAccess, SecurityPermissionState.Allow); usersRole.AddTypePermissionsRecursively <VehiclePolicy>(SecurityOperations.Create, SecurityPermissionState.Allow); } }