Uploaded image for project: 'JOC - JobScheduler Operations Center'
  1. JOC - JobScheduler Operations Center
  2. JOC-1864

Missing authorization should try the next Identity Service

    XMLWordPrintable

Details

    Description

       Current Situation

      Account A1 is detached to Identity Service I1
      Account A1 is detached to Identity Service I2

      In I1 no permission is assigned to A1
      In I2 at least one permission is assigned to A1

      The ordering of l1 is smaller than the ordering of l2

      When login with the account A1 the authentication is succuessful for the idenity service l1 and  A1 does not have any permission.

      Behavior since 2.6.7 and 2.5.10 and 2.7.1
      The login is rejected. l2 is not checked for authentication and authorization of A1.

      Behavior before 2.6.7 and 2.5.10
      The login was successful and an empty dashboard have been shown.  l2 is not checked for authentication and authorization of A1.

      Desired Behavior

      When A1 does not have any permission after a successful authentication, the next identity service should be used for authentication and authorization.

      Patch

      Attachments

        Activity

          People

            ur Uwe Risse
            ur Uwe Risse
            Gautam Vadera Gautam Vadera
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved: