Uploaded image for project: 'OpenIDM'
  1. OpenIDM
  2. OPENIDM-14370

Requests for edge returning too many objects when filter is only on one resource collection

    Details

    • Type: Bug
    • Status: Closed
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: 7.0.0
    • Fix Version/s: 7.0.0
    • Component/s: None
    • Labels:

      Description

      Requests for edge returning too many objects when filter is only on one resource collection.

      Example:A request to

      managed/user/psmith/authzRoles?_queryFilter=true

      will return too many objects if there is both an internal/role and a managed/role but the filter is only on one path.

      The RequestTransformer will combine the filters and end up with something like "true or /name eq 'openidm-authorized'" and then the internal role is not filtered out. RequestTransformer#visitQueryRequest should only be transforming the queryFilter for origin requests and privilege filters should be considered during the repo query.

        Attachments

          Issue Links

          depends on

          Bug - A problem which impairs or prevents the functions of the product. OPENIDM-14387 DA: Too many objects returned from an edge's relationship field when privilege filter should limit

          • Major - Major loss of function.
          • Closed
          relates to

          QA Task - A task which needs to be performed by QA OPENIDM-14431 QA: Edge collection queries should filter according to resource

          • Major - Major loss of function.
          • Closed

            Activity

              People

              • Assignee:
                katie.gonzalez Katie Gonzalez
                Reporter:
                katie.gonzalez Katie Gonzalez
              • Votes:
                0 Vote for this issue
                Watchers:
                2 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: