Uploaded image for project: 'OpenIDM'
  1. OpenIDM
  2. OPENIDM-10716

Update auth logic to support roles dynamically

    Details

    • Type: Improvement
    • Status: Closed
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: 6.5.0
    • Fix Version/s: 6.5.0
    • Labels:

      Description

      Our auth logic presently does not calculates the roles for the request user for JWT_SESSION module-authenticated requests.  However, to support the possibility that a user's roles and/or privileges may change while the user is currently logged in we must recalculate their roles for every request.  That updated list of roles must be present in the new returned JWT and will be used by the privilege filter to authorize the request.

        Attachments

          Issue Links

            Activity

              People

              • Assignee:
                katie.gonzalez Katie Gonzalez
                Reporter:
                jbranch Jon Branch
              • Votes:
                0 Vote for this issue
                Watchers:
                2 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: