Question
Morgan Stanley
IN
Last activity: 10 Sep 2020 11:58 EDT
Custom activity not getting executed for unauthenticated / guest user
I have a requirement for customizing the Pega login screen. Below are the features which are completed:
1. Changed the login screen(with custom css and html Web-Login). 2 buttons are added. SignIn and Create Account
2. On click of SignIn, the general Pega login will take place. using Code-Security.Login
3. On click of Create Account, a html is shown where the guest user is asked to enter his email and click on GenerateOTP button to get the OTP.
4. All the required configurations like setting up the Browser requestor type, Unauthenticated Access group, Adding an unauthenticated RS in the access group etc are take care.
Issue- When the server url is hit, the customized login screen displays. On click of Create Account , when user enters his email and click on Generate OTP, the activity is not getting executed. (Neither the OTP comes nor the next screen is shown where the user is asked to enter the received OTP)
Observation- When I run the preview of Web-Login and then click on Create Account,the functionality works end to end. Meaning for an authenticated user, the activity (on click of Generate OTP) gets executed and so on.
QQ- Do we have any way to run a custom activity when the user is not authenticated yet?
***Edited by Moderator: Pallavi to change content type from Discussion to Question***
-
Like (0)
-
Share this page Facebook Twitter LinkedIn Email Copying... Copied!
Accepted Solution
Updated: 10 Sep 2020 8:50 EDT
Morgan Stanley
IN
@GUMUDAVELLY . I did figure out a way which resolve the issue. The issue was a Guest user was not able to run an activity which exists inside PRPC as he has not been authenticated yet. The web-logic and the subsequent htmls he can always see as they are plain html which can be opened in a web browser.
This resolved the issue.
https://collaborate.pega.com/question/guest-user-portal-access-using-link
<button style="width:237.5px;background:#5D617E"><a href="urlofyourApplication?UserIdentifier=user credentials&Password=base64password&Action=&pyActivity=name of the activity to Generate OTP" style="text-decoration:none; color:white;">Registration </a>
Updated: 1 Sep 2020 8:37 EDT
Ford Motor Company
US
Below articles are helped me in Customizing the Login Page, which provides bot PR Login Option as well as Button to route the authentication to my Organizations authentication via SSO.
https://community.pega.com/knowledgebase/articles/customizing-pega-7-login-screen https://myknowpega.com/2019/07/06/unauthenticated/ https://collaborate.pega.com/system/files/Customizing%20the%20Pega%208.1%20Login%20Screen.pdf https://community.pega.com/sites/default/files/help_v722/procomhelpmain.htm#howto/howto2/howtocustomsignon.htm%3FTocPath%3DDesigner%2520Studio%2520configuration%7CBrowser%2520and%2520environment%2520configuration%7C_____4
Based on the observation you have shared, it appears at run time the Custom Actvity is not running. Please make sure your System's [ Records Explorer, SysAdmin > Requestor Type > "Your System Name"] BROWSER Requestor is able to access to your custom rules.
Morgan Stanley
IN
Thanks @Gumudavelly. The articles above shows how to customize the login screen. This functionality I have already achieved and the user is able to login also after the customizations. The issue which I am facing is that any custom activity called on another button (SignUp) is not getting executed when its a guest user.
1. I click on the button (Generate OTP) as guest user and nothing happens.
2. I go back to the login screen (via an HTML <a href > change link) and then login with my credentials. As soon as I login, I receive the OTP and also the screen is shown where user enters the OTP.
Hence i reached on this conclusion that any custom activity is not getting executed if a user is not authenticated yet.
Any resolutions would really help. !!
Thanks
Ankita
Updated: 3 Sep 2020 22:25 EDT
Ford Motor Company
US
@AnkitaShukla Can you verify, the Access Roles associated to your Environment's Browser Requestor's access Group. If you are still using PegaRULES:Guest, it may be worth changing to a Access Role something like: PegaRULES:SysAdm4
Other thought is, Trace the Guest User Requestor from Requestor Landing Page of SMA ( if it is older version) to see what is the Operator Context at Run time and does the user able to access your custom rules.
Morgan Stanley
IN
I tried this already. doesnt work.
Ford Motor Company
US
@AnkitaShukla Please PM me if you would like to join a troubleshooting session. I still suspect,issue is around PRPC:UnAuthenticated
Accepted Solution
Updated: 10 Sep 2020 8:50 EDT
Morgan Stanley
IN
@GUMUDAVELLY . I did figure out a way which resolve the issue. The issue was a Guest user was not able to run an activity which exists inside PRPC as he has not been authenticated yet. The web-logic and the subsequent htmls he can always see as they are plain html which can be opened in a web browser.
This resolved the issue.
https://collaborate.pega.com/question/guest-user-portal-access-using-link
<button style="width:237.5px;background:#5D617E"><a href="urlofyourApplication?UserIdentifier=user credentials&Password=base64password&Action=&pyActivity=name of the activity to Generate OTP" style="text-decoration:none; color:white;">Registration </a>
Ford Motor Company
US
@AnkitaShukla Thanks for Sharing the Update.
Updated: 2 Sep 2020 8:06 EDT
Yildirim
TR
Hi, Can you check the activity's security tab? Check the first checkbox and uncheck the second one. Kind Regards, Burak
Morgan Stanley
IN
Thanks Burak. It is already taken care. The "Required authentication to run" checkbox in the Security tab is unchecked and 1st one is checked.
Updated: 4 Sep 2020 4:45 EDT
Proximus
BE
Hello,
in Access Group PRPC:Unauthenticated you need to add in advanced tab > Production Ruleset, the required ruleset to be accessed to start.
Your default browser requestor (system, node, requestor) needs to point to this Unhauthenticated AG.
So unauthenticated people will use this AG for which you've added access to your specific ruleset.
It should be fine then.
Regards
Anthony
Morgan Stanley
IN
hi Anthony. This set up is also done. I followed step by step process of Login screen customization. Adding the unauthenticated ruleset to Unauthenticated access group was one of the step which is taken care.
Thanks