Uploaded image for project: 'Infinispan'
  1. Infinispan
  2. ISPN-12765

REST API does not correctly handle authz for ADMIN in XSite, Query and Backups

    XMLWordPrintable

Details

    • Bug
    • Resolution: Done
    • Blocker
    • 12.1.0.CR1
    • 12.0.1.Final
    • REST
    • None

    Description

      When the REST api performs operations on XSite, Query and Backups that can be only done for ADMIN users, admin user subject is not correctly handled and is detected as null, so REST endpoints respond with Subject null lacks ADMIN permission.

      Some uses like xsiteAdmin.checkSite(site) can't be used from the REST api without a wrapper that will check the subject in the request

      Attachments

        Issue Links

          blocks

          Enhancement - An enhancement to or refactoring of existing functionality that is not configurable by an end user (typically a change made by an internal team that affects users) ISPN-11596 Role based access in the Infinispan Console

          • Major - To be worked after higher priority work items are addressed. When the severity is high and the effort to change it is low to moderate, this term is chosen. Issues in this category likely have an existing workaround but implementation or execution may be non-trivial.
          • Closed
          relates to

          Bug - A problem that impairs or prevents the functions of the product. ISPN-12764 Error executing the Indexer when security is enabled

          • Major - To be worked after higher priority work items are addressed. When the severity is high and the effort to change it is low to moderate, this term is chosen. Issues in this category likely have an existing workaround but implementation or execution may be non-trivial.
          • Closed

          Activity

            People

              ttarrant@redhat.com Tristan Tarrant
              karestig@redhat.com Katia Aresti
              Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: