Uploaded image for project: 'Red Hat Process Automation Manager'
  1. Red Hat Process Automation Manager
  2. RHPAM-4321

[Weblogic] Incorrect groups are returned when "org.kie.server.bypass.auth.user" is set and JAASUserGroupCallbackImpl is used

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Won't Do
    • Icon: Major Major
    • None
    • 7.12.0.GA
    • jBPM Core, Kie-Server
    • None
    • False
    • None
    • False
    • should be documented as a limitation
      • Enable `org.kie.server.bypass.auth.user`
      • Assign a groupId to a task
      • Try to fetch a particular task by calling potOwner/stakeHolder/businessAdmin, passing a userId which belongs to the groupId.
    • ---
    • ---

      This jiras is a followed up of RHPAM-4136 - same issue as per that ticket but in particular for Weblogic.

      Same problem remains when enabling the bypass system property and trying to fetch the tasks for a user/group where he is either the potential owner, stakeholder or business admin of the task.

      Problem behind seems to be the implementation done as per logic:

      https://github.com/kiegroup/jbpm/blob/main/jbpm-human-task/jbpm-human-task-core/src/main/java/org/jbpm/services/task/identity/JAASUserGroupCallbackImpl.java#L139

      Where the adapter for Weblogic adapter, it only fetches the groups belonging to the authenticated user and not the bypass user:

      https://github.com/kiegroup/jbpm/blob/main/jbpm-human-task/jbpm-human-task-core/src/main/java/org/jbpm/services/task/identity/adapter/WeblogicUserGroupAdapter.java#L51-L58

              rhn-support-egonzale Enrique Gonzalez Martinez (Inactive)
              antferna Antonio Fernandez Alhambra (Inactive)
              Antonio Fernandez Alhambra Antonio Fernandez Alhambra (Inactive)
              Antonio Fernandez Alhambra Antonio Fernandez Alhambra (Inactive)
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

                Created:
                Updated:
                Resolved: