-
Bug
-
Resolution: Done
-
Major
-
7.12.0.GA
-
False
-
False
-
Release Notes
-
-
-
-
-
-
CR1
-
+
-
-
-
2022 Week 11-13 (from Mar 14), 2022 Week 14-16 (from Apr 4)
Incorrect groups for a particular user passed as parameter are returned from `getGroupsForUser` method in `JAASUserGroupCallbackImpl` implementation class [1].
This is causing issues when we have bypass property `org.kie.server.bypass.auth.user` enabled and try to fetch tasks assigned to a particular user/group (getTasksAsPotentialOwner, getTasksAssignedAsBusinessAdministrator, getCaseTasksAssignedAsStakeholder, etc.) as we will be getting only the groups belonging to the authenticated user instead to the parameter userId passed as parameter.
For instance, when bypass is enabled and we try to fetch the tasks assigned as potential owner for a task assigned to a group, with JAASUserGroupCallbackImpl:
- It will retrieve the groupIds belonging to a user by calling `getCallbackUserRoles` method[2]
- `getCallbackUserRoles` method, will invoke `getGroupsForUser` method from the `JAASUserGroupCallbackImpl` impl class[3].
- The groups fetched are from the authenticated users and not from the userId passed as argument.
- blocks
-
RHPAM-4023 Test case is missing for ticket RHPAM-3778 - Getting potential owners for a case task
- Closed
- is cloned by
-
JBPM-10039 Incorrect groups are returned when "org.kie.server.bypass.auth.user" is set and JAASUserGroupCallbackImpl is used
- Resolved
- is related to
-
RHPAM-4151 Incorrect response for REST service when "org.kie.server.bypass.auth.user" used with Spring Boot Runtime
- Closed
-
RHPAM-4087 Incorrect response for REST service when "org.kie.server.bypass.auth.user" used with JAASUserGroupCallbackImpl
- Closed
-
RHPAM-4270 [JWS/Tomcat] Incorrect groups are returned when "org.kie.server.bypass.auth.user" is set and JAASUserGroupCallbackImpl is used
- Closed
-
RHPAM-4321 [Weblogic] Incorrect groups are returned when "org.kie.server.bypass.auth.user" is set and JAASUserGroupCallbackImpl is used
- Closed
- relates to
-
RHPAM-4277 claiming task on openshift using org.kie.server.bypass.auth.user=true not working
- Closed
-
BXMSDOC-8562 org.kie.server.bypass.auth.user limitations should be documented
- New