Uploaded image for project: 'Red Hat 3scale API Management'
  1. Red Hat 3scale API Management
  2. THREESCALE-4464

Auth cache is active when auth caching policy is none

    XMLWordPrintable

Details

    • Not Started
    • Not Started
    • Not Started
    • Not Started
    • Not Started
    • Not Started
    • No
    • +
    • Hide
      1. Set the auth caching policy of an API to strict.
      2. Promote the configuration to the staging environment.
      3. sent a request with a valid user_key and confirm a client gets 200.
      4. Set the auth caching policy of an API to none.
      5. Promote the configuration to the staging environment.
      6. Set replicas of backend-listener to 0
      7. sent a request with a valid user_key

      Expected result:
      The request gets 403

      Actual result:
      The request gets 200

      Additional information:
      This issue occurs on apicast-production environment too.

      Show
      Set the auth caching policy of an API to strict . Promote the configuration to the staging environment. sent a request with a valid user_key and confirm a client gets 200. Set the auth caching policy of an API to none . Promote the configuration to the staging environment. Set replicas of backend-listener to 0 sent a request with a valid user_key Expected result: The request gets 403 Actual result: The request gets 200 Additional information: This issue occurs on apicast-production environment too.

    Description

      Auth cache is active when auth caching policy is none and a user key is authorized when the policy was not none. See steps to reproduce.

      Attachments

        Activity

          People

            Unassigned Unassigned
            rhn-support-tkonishi Takayuki Konishi
            Hugo Chrast Hugo Chrast
            Eloy Coto Eloy Coto (Inactive)
            Votes:
            0 Vote for this issue
            Watchers:
            7 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved: