Uploaded image for project: 'OpenIDM'
  1. OpenIDM
  2. OPENIDM-14430

Query/Read only allowed on edge for Delegated Admin user.

    Details

    • Type: Bug
    • Status: Closed
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: 7.0.0
    • Fix Version/s: 7.0.0
    • Component/s: None
    • Labels:

      Description

      It was determined that relationship updates as a Delegated Admin user need to be performed through Patch add/remove/replace operation(s) through the origin resource.

      We made the changes to disallow action on the edge such in the case of an edge collection but did not address other requests to edge singleton such as manager.

      Create, Update, Delete, Patch to any edge request should all be denied. Query and Read allowed only.

      Update https://stash.forgerock.org/projects/OPENIDM/repos/openidm/browse/openidm-authz/README.md with changes.

        Attachments

          Issue Links

            Activity

              People

              • Assignee:
                katie.gonzalez Katie Gonzalez
                Reporter:
                katie.gonzalez Katie Gonzalez
                QA Assignee:
                Alexander Dracka
              • Votes:
                0 Vote for this issue
                Watchers:
                2 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: