-
Type:
Bug
-
Status: Closed
-
Priority:
Major
-
Resolution: Fixed
-
Affects Version/s: 7.0.0
-
Fix Version/s: 7.0.0
-
Component/s: None
-
Labels:
-
Target Version/s:
-
Verified Version/s:
-
Story Points:3
-
Sprint:2020.03 - IDM
-
Epic Link:
Requests for edge returning too many objects when filter is only on one resource collection.
Example:A request to
managed/user/psmith/authzRoles?_queryFilter=true
will return too many objects if there is both an internal/role and a managed/role but the filter is only on one path.
The RequestTransformer will combine the filters and end up with something like "true or /name eq 'openidm-authorized'" and then the internal role is not filtered out. RequestTransformer#visitQueryRequest should only be transforming the queryFilter for origin requests and privilege filters should be considered during the repo query.
- depends on
-
OPENIDM-14387 DA: Too many objects returned from an edge's relationship field when privilege filter should limit
-
- Closed
-
- relates to
-
OPENIDM-14431 QA: Edge collection queries should filter according to resource
-
- Closed
-