Pre-Login Access

Pre-login access authority to the application is controlled using the PreLoginUserAccess record in the application’s configuration file, config.xml.

The PreLoginUserAccess record includes <access/> elements that allow you to specify the functions to which the user will have access before logging in:

<record jsxid="PreLoginUserAccess">
   <access name="ApplicationLog"/>
   <access name="ShowErrorDetail">
      <!--<access name="ShowStackTrace"/>-->
   </access>
   <access name="Help">
      <access name="Help"/>
      <access name="About"/>
   </access>
</record>

where:

  • ApplicationLog - If included, this provides access to the Application Log. The Application Log is used to troublehoot the application. It provides detailed debug information generated by the application, as well as information about communications between the application and Action Processor. For more information, see Application Log.
  • ShowErrorDetail - If included, details about error conditions are displayed to the user.
  • ShowStackTrace - If included, a stack trace is shown when error information is displayed. This is commented out by default, as this information could be used by an attacker to gain insight into internal processes.
  • Help - If included, the Help selection is available from the Help button menu on the Login screen. This provides access to the application user’s guide.
  • About - If included, the About selection is available from the Help button menu on the Login screen. This provide access to a dialog that include the software legal notice, as well as application version information.

Note that if neither Help nor About are included, the Help button does not display on the Login screen.

You can customize the PreLoginUserAccess record as needed:

  • include <access/> elements for each function to which you want all users to have access pre-login.
  • remove, or comment out, all <access/> elements for the functions to which you do not want users to have access pre-login.

Once a user logs in, access authority to these specific functions can be overridden with the ApplicationLog, ShowErrorDetail, ShowStackTrace, Help > Help, and Help > About access entries—see Available Functions.

Note that the pre-login access controls are not overridden by system actions.