Project

General

Profile

Actions
Copy link

Task #1967

closed

Autorization policies - apply distinct configured policies

Added by Radek Tomiška about 5 years ago. Updated over 4 years ago.

Status:
Closed
Priority:
Normal
Assignee:
Radek Tomiška
Category:
Authentication / Authorization
Target version:
10.5.0
Start date:
11/29/2019
Due date:
% Done:

100%

Estimated time:
Owner:

Description

When duplicate authorization policy is assigned to logged identity, then only one predicate can be appended into search query:
- policy properties has to be the same
- evaluated permission should be present in both policies

Note: comparing created predicate is maybe possible, but it will be better to not use it (sub selects can be executed, when predicate is prepared, even it's not preferred way).

Related issues

Related to IdStory Identity Manager - Task #2366: Authorization policies - use cache for evaluate permissions (loading permissions for eav attributes is slow)ClosedRadek Tomiška07/03/2020

Actions
Actions
Copy link
 #1

Updated by Radek Tomiška over 4 years ago

  • Related to Task #2366: Authorization policies - use cache for evaluate permissions (loading permissions for eav attributes is slow) added
Actions
Copy link
 #2

Updated by Radek Tomiška over 4 years ago

  • Category set to Authentication / Authorization
  • Status changed from New to In Progress
  • Target version set to 10.5.0
Actions
Copy link
 #3

Updated by Radek Tomiška over 4 years ago

  • Status changed from In Progress to Needs feedback
  • Assignee changed from Radek Tomiška to Vít Švanda
  • % Done changed from 0 to 90

It's implemented. Distinct authorization policies are evaluated now (policy configuration is not a same).

Commit (branch):
https://github.com/bcvsolutions/CzechIdMng/commit/d2f44195e5445f24c830634272817f633c4cd5bb

Could you provide me a feedback, please?

Actions
Copy link
 #4

Updated by Vít Švanda over 4 years ago

  • Status changed from Needs feedback to Resolved
  • Assignee changed from Vít Švanda to Radek Tomiška
  • % Done changed from 90 to 100

I did reivew and tested it. Works fine, thanks for this performance improving.

Actions
Copy link
 #5

Updated by Radek Tomiška over 4 years ago

  • Status changed from Resolved to Closed
Actions
Copy link

Also available in: Atom PDF