Uploaded image for project: 'BxMS Documentation'
  1. BxMS Documentation
  2. BXMSDOC-8562

org.kie.server.bypass.auth.user limitations should be documented

    XMLWordPrintable

Details

    • Task
    • Resolution: Unresolved
    • Major
    • 7.13
    • 7.13
    • KIE Server
    • None

    Description

      Some customers have reported issues related to the flag org.kie.server.bypass.auth.user, which in fact are some limitations, so this should be documented. Some Jiras related to it: RHPAM-4277, RHPAM-4270, RHPAM-4136, RHPAM-4321.

      The flag is mentioned in the guide "Managing Red Hat Process Automation Manager and KIE Server settings" - however its description is missing there (I would also recommend adding in that table the column Description, as we have in the community doc, it is missing in product doc for "other properties").

      After the table I suggest to add a caveat mentioning where that flag will not work.

      It will not work if kie-server is deployed on Tomcat or Weblogic and is used JAASUserGroupCallbackImpl; for these two Application Servers, some other callback should be used. Another restriction is if Red Hat SSO is used, in this case the flag may not work properly for any Application Server nor Spring Boot applications. The recommendation is to follow the KCS below if RHSSO is used:

      https://access.redhat.com/solutions/6964490

      These limitation are only in place when the bypass flag is enabled and the human tasks are assigned to a group. It works fine when Human Tasks are assign to individuals.

       

       

      Attachments

        Issue Links

          is related to

          Bug - A problem that impairs or prevents the functions of the product. RHPAM-4136 Incorrect groups are returned when "org.kie.server.bypass.auth.user" is set and JAASUserGroupCallbackImpl is used

          • Major - To be worked after higher priority work items are addressed. When the severity is high and the effort to change it is low to moderate, this term is chosen. Issues in this category likely have an existing workaround but implementation or execution may be non-trivial.
          • Closed

          Bug - A problem that impairs or prevents the functions of the product. RHPAM-4270 [JWS/Tomcat] Incorrect groups are returned when "org.kie.server.bypass.auth.user" is set and JAASUserGroupCallbackImpl is used

          • Major - To be worked after higher priority work items are addressed. When the severity is high and the effort to change it is low to moderate, this term is chosen. Issues in this category likely have an existing workaround but implementation or execution may be non-trivial.
          • Closed

          Bug - A problem that impairs or prevents the functions of the product. RHPAM-4277 claiming task on openshift using org.kie.server.bypass.auth.user=true not working

          • Major - To be worked after higher priority work items are addressed. When the severity is high and the effort to change it is low to moderate, this term is chosen. Issues in this category likely have an existing workaround but implementation or execution may be non-trivial.
          • Closed

          Bug - A problem that impairs or prevents the functions of the product. RHPAM-4321 [Weblogic] Incorrect groups are returned when "org.kie.server.bypass.auth.user" is set and JAASUserGroupCallbackImpl is used

          • Major - To be worked after higher priority work items are addressed. When the severity is high and the effort to change it is low to moderate, this term is chosen. Issues in this category likely have an existing workaround but implementation or execution may be non-trivial.
          • Closed
          relates to

          Bug - A problem that impairs or prevents the functions of the product. JBPM-10110 Need to exclude some bypass integration integration test for specific servers

          • Minor - To be worked after urgent, high, and medium priorities are resolved. This term is chosen when the severity of the issue is low, or the complexity or effort to correct it may be higher, relatively speaking. For low priority issues, known workarounds exist or are not needed due to the trivial effort needed to address the issue.
          • Resolved

          Activity

            People

              ebalta@redhat.com Esther Balta (Inactive)
              rhn-support-alazarot Alessandro Lazarotti
              Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

              Dates

                Created:
                Updated: