Bahmni 0.93 is implemented across multiple healthcare facilities on the same server, allowing different facilities to log in from a shared instance. I want to restrict users so they can only log in from their assigned facility.
For example, if a user belongs to “ABC Facility Center,” they should only be able to log in from ABC Facility Center and not from “DEF Facility Center” or any other facility.
How can I enforce this restriction? cc. @sanjayap @mohant @rijan17 @angshuonline @rahu1ramesh
@santosh I assume that ABC Facility Center / DEF Facility Center are configured as locations in your implementation ?
If yes, then with latest releases of Bahmni Standard, there is a feature to assign locations to providers. The login will be a two step flow, where credential authentication happens and then based on the user, the locations will be displayed. This feature is not available on 0.93
If you have multiple Bahmni Instances running, then you need to figure out restrictions using some sort of IP whitelisting.
We have developed a feature that maps the facility center based on the user and exposes the data through the OpenMRS API. Later, access is restricted using the default location UUID stored in the Bahmni cookies. Thank you @mohant