Uploaded image for project: 'Red Hat 3scale API Management'
  1. Red Hat 3scale API Management
  2. THREESCALE-4464

Auth cache is active when auth caching policy is none

XMLWordPrintable

    • Not Started
    • Not Started
    • Not Started
    • Not Started
    • Not Started
    • Not Started
    • No
    • +
    • Hide
      1. Set the auth caching policy of an API to strict.
      2. Promote the configuration to the staging environment.
      3. sent a request with a valid user_key and confirm a client gets 200.
      4. Set the auth caching policy of an API to none.
      5. Promote the configuration to the staging environment.
      6. Set replicas of backend-listener to 0
      7. sent a request with a valid user_key

      Expected result:
      The request gets 403

      Actual result:
      The request gets 200

      Additional information:
      This issue occurs on apicast-production environment too.

      Show
      Set the auth caching policy of an API to strict . Promote the configuration to the staging environment. sent a request with a valid user_key and confirm a client gets 200. Set the auth caching policy of an API to none . Promote the configuration to the staging environment. Set replicas of backend-listener to 0 sent a request with a valid user_key Expected result: The request gets 403 Actual result: The request gets 200 Additional information: This issue occurs on apicast-production environment too.

      Auth cache is active when auth caching policy is none and a user key is authorized when the policy was not none. See steps to reproduce.

              Unassigned Unassigned
              rhn-support-tkonishi Takayuki Konishi
              Hugo Chrast Hugo Chrast
              Eloy Coto Eloy Coto (Inactive)
              Votes:
              0 Vote for this issue
              Watchers:
              7 Start watching this issue

                Created:
                Updated:
                Resolved: