[JOC-1864] Missing authorization should try the next Identity Service - SOS JIRA

XML

Word

Printable

Details

Type: Feature
Status: Released (View Workflow)
Priority: Minor
Resolution: Fixed
Affects Version/s: 2.5.9, 2.6.6, 2.7.1
Fix Version/s: 2.5.10, 2.6.7, 2.7.2
Component/s: JOC Cockpit Web Service
Labels:
None

Description

Current Situation

Account A1 is detached to Identity Service I1
Account A1 is detached to Identity Service I2

In I1 no permission is assigned to A1
In I2 at least one permission is assigned to A1

The ordering of l1 is smaller than the ordering of l2

When login with the account A1 the authentication is succuessful for the idenity service l1 and A1 does not have any permission.

Behavior since 2.6.7 and 2.5.10 and 2.7.1
The login is rejected. l2 is not checked for authentication and authorization of A1.

Behavior before 2.6.7 and 2.5.10
The login was successful and an empty dashboard have been shown. l2 is not checked for authentication and authorization of A1.

Desired Behavior

When A1 does not have any permission after a successful authentication, the next identity service should be used for authentication and authorization.

Patch

patch for 2.7.1 is available
- https://download.sos-berlin.com/patches/2.7.1-patch/js7_joc.2.7.1-PATCH.API-2.JOC-1864.jar [sha256] [sig] [tsr]

Attachments

Activity

People

Assignee:: Uwe Risse

Reporter:: Uwe Risse

Approver:: Gautam Vadera

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Dates

Created:: 29 July 2024 13:30

Updated:: 22 August 2024 18:30

Resolved:: 30 July 2024 08:43