Defect #2900
closed
When I login as other user, after short time IdM stops to respect rights of that user in its behavior
Added by František Neznaj over 3 years ago.
Updated over 3 years ago.
Category:
Authentication / Authorization
Description
- I login as superadmin to IdM.
- I use "login as other user" to login as standard user with limited rights for testing of features
- I can work as expected with target user rights, I can see his Dashboard, Tasks and create new user based one one projection he has rights for
- after short time (5-30 seconds, different in each test), the behavior of IdM shifts:
- Warning ("Insufficient permissions - You do not have sufficient permissions for selected action.") appears in Tasks and Dashboard (it should not)
- When creating user, I can select from all three projections there (I do have rights for it as superadmin, but target user has rights only for one of them).
- Related to Task #1761: Long polling for refresh role-request state added
- Related to Defect #2895: Error page when downloading a report (Firefox) added
- Status changed from New to In Progress
- Target version set to 11.2.0
The issue is related to long-polling added in monitoring into main application page (navigation). Authentication used in long pooling is holded for thread on backend and is wrongly reused for switched user on frontend, after long-pooling request is completed.
Workaround: Disable long-polling (using property: 'idm.pub.app.long-polling.enabled'), then the issue does not happen.
- Status changed from In Progress to Needs feedback
- Assignee changed from Radek Tomiška to Ondrej Husník
- % Done changed from 0 to 90
- Target version changed from 11.2.0 to 11.1.2
- Affected versions 11.1.2 added
- Affected versions deleted (
11.1.1)
- Status changed from Needs feedback to Resolved
- Assignee changed from Ondrej Husník to Radek Tomiška
- % Done changed from 90 to 100
- Affected versions Forsterite (7.6.0) added
I tried your fix and it acts properly now.
- Status changed from Resolved to Closed
- Affected versions deleted (
Forsterite (7.6.0))
- Affected versions 11.1.0, 11.1.1 added
- Affected versions deleted (
11.1.2)
Also available in: Atom
PDF