Actions
Defect #2900
closed
When I login as other user, after short time IdM stops to respect rights of that user in its behavior
Status:
Closed
Priority:
Normal
Assignee:
Radek Tomiška
Category:
Authentication / Authorization
Target version:
Start date:
08/03/2021
Due date:
% Done:
100%
Estimated time:
Description
- I login as superadmin to IdM.
- I use "login as other user" to login as standard user with limited rights for testing of features
- I can work as expected with target user rights, I can see his Dashboard, Tasks and create new user based one one projection he has rights for
- after short time (5-30 seconds, different in each test), the behavior of IdM shifts:
- Warning ("Insufficient permissions - You do not have sufficient permissions for selected action.") appears in Tasks and Dashboard (it should not)
- When creating user, I can select from all three projections there (I do have rights for it as superadmin, but target user has rights only for one of them).
Related issues
Updated by Radek Tomiška over 2 years ago
- Related to Task #1761: Long polling for refresh role-request state added
Updated by Radek Tomiška over 2 years ago
- Related to Defect #2895: Error page when downloading a report (Firefox) added
Updated by Radek Tomiška over 2 years ago
- Related to Feature #1865: IdM monitoring added
Updated by Radek Tomiška over 2 years ago
- Status changed from New to In Progress
- Target version set to 11.2.0
The issue is related to long-polling added in monitoring into main application page (navigation). Authentication used in long pooling is holded for thread on backend and is wrongly reused for switched user on frontend, after long-pooling request is completed.
Workaround: Disable long-polling (using property: 'idm.pub.app.long-polling.enabled'), then the issue does not happen.
Updated by Radek Tomiška over 2 years ago
- Status changed from In Progress to Needs feedback
- Assignee changed from Radek Tomiška to Ondrej Husník
- % Done changed from 0 to 90
I added aborting long-polling requests properly in navigation, after user is switched.
Commit:
https://github.com/bcvsolutions/CzechIdMng/commit/59b86f9483a622b33dfc8e15fa0904824075ac66
Could you provide me a feedback, please?
Updated by Radek Tomiška over 2 years ago
- Target version changed from 11.2.0 to 11.1.2
- Affected versions 11.1.2 added
- Affected versions deleted (
11.1.1)
Updated by Ondrej Husník over 2 years ago
- Status changed from Needs feedback to Resolved
- Assignee changed from Ondrej Husník to Radek Tomiška
- % Done changed from 90 to 100
- Affected versions Forsterite (7.6.0) added
I tried your fix and it acts properly now.
Updated by Radek Tomiška over 2 years ago
- Status changed from Resolved to Closed
- Affected versions deleted (
Forsterite (7.6.0))
Updated by Radek Tomiška over 2 years ago
- Affected versions 11.1.0, 11.1.1 added
- Affected versions deleted (
11.1.2)
Actions