Loading...

This issue belongs to an archived project. You can view it, but you can't modify it. Learn more

XML

Word

Printable

Type: Task
Resolution: Done
Priority: Major
Fix Version/s: 9.0.0.Final
Affects Version/s: None
Component/s: Remote Protocols, Server
Labels:
None

Git Pull Request:
https://github.com/infinispan/infinispan/pull/4227

The server protocols currently allow access to internal user caches (such as the script and schema caches) if authorization is disabled. We should instead not allow access.

blocks

JDG-285 Protect internal caches from remote access when security is disabled

Closed

causes

ISPN-7814 Remove auth check in CacheDecodeContext

Closed

relates to

ISPN-6454 Schema cache should require a special role when authorization is enabled

Closed

Assignee:: Tristan Tarrant

Reporter:: Tristan Tarrant

Archiver:: Amol Dongare

Created:: 2016/03/31 8:31 AM

Updated:: 2020/09/30 2:50 PM

Resolved:: 2016/04/20 10:31 AM

Archived:: 2024/11/28 6:21 AM

Details

Description

Attachments

Issue Links

Easy Agile Planning Poker

Activity

People

Dates

PagerDuty