Uploaded image for project: 'Keycloak'
  1. Keycloak
  2. KEYCLOAK-14094

[REL] Authorization context not always considering scope when checking permission

    Details

      Description

      When checking permissions using:

      org.keycloak.AuthorizationContext#hasPermission
      

      Where the scopeName is not null, the context may return true if there is a permission for the resource even though the given scopeName is not among those within the permission.

        Gliffy Diagrams

          Attachments

            Issue Links

              Activity

                People

                • Assignee:
                  pcraveiro Pedro Igor Silva
                  Reporter:
                  pcraveiro Pedro Igor Silva
                • Votes:
                  0 Vote for this issue
                  Watchers:
                  1 Start watching this issue

                  Dates

                  • Created:
                    Updated:
                    Resolved: