Project

General

Profile

Actions

Defect #2594

closed

Authentication: Disabled identity is not checked by sso and target system authentication (disabled identity can log in over sso or target system).

Added by Radek Tomiška about 4 years ago. Updated about 4 years ago.

Status:
Closed
Priority:
Normal
Assignee:
Radek Tomiška
Category:
Authentication / Authorization
Target version:
Start date:
11/30/2020
Due date:
% Done:

100%

Estimated time:
Affected versions:
Owner:

Description

Disabled identity is not checked in sso authentication filters (SsoIdmAuthenticationFilter) and target system authentication filters (DefaultAccAuthenticator, DefaultAccMultipleSystemAuthenticator) => valid token is created for disabled identity and identity is successfully authenticated.
Fix mentioned filters to not authenticate invalid identity.

Issue is connected to #2413, where invalid identity was checked even if token is valid (as "duplicate" check).


Related issues

Related to IdStory Identity Manager - Task #2413: Cache: add cache for tokenClosedRadek Tomiška07/31/2020

Actions
Actions

Also available in: Atom PDF