Actions
Task #1173
openAdd permission to disable SSO
Status:
New
Priority:
Normal
Assignee:
Radek Tomiška
Category:
Authentication / Authorization
Target version:
-
Start date:
07/16/2018
Due date:
% Done:
0%
Estimated time:
Owner:
Description
This follow the implementation of SSO as consulted in #1095#note-3.
Add a new permission "App configuration" - "SSO disabled". Admins, who have some role with this permission, won't be authenticated by SsoIdmAuthenticationFilter.
Check the method IdmAuthorizationPolicyService#getGrantedAuthorities when processing APP group permission (APP != APP_ADMIN).
Create IdmAuthorizationPolicyService#getAssignedAuthorities so it returns all effective authorities without trimming.
No data to display
Actions