Uploaded image for project: 'OpenIDM'
  1. OpenIDM
  2. OPENIDM-15117

PATCH on managed objects not decrypting secrets before patch

    Details

    • Type: Bug
    • Status: Closed
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: None
    • Fix Version/s: 7.0.0
    • Component/s: None
    • Target Version/s:
    • Verified Version/s:
    • Story Points:
      1
    • Sprint:
      2020.09 - IDM

      Description

      PATCH on managed objects, and internal objects, is not decrypting secrets before patch. We normally decrypt secrets when applying UPDATEs so that we can detect if the update/patch will actually not cause any change.

      JSON Patch functionality can not detect when "no modification" has occurred (e.g., patch to password field), so instead of returning the current managed object it is trying to update it.

      There could be other indirect consequences to persisting the value with the encryption scheme referenced in the request object, as opposed to the scheme configured inside IDM itself.

        Attachments

          Issue Links

            Activity

              People

              • Assignee:
                travis.haagen Travis Haagen
                Reporter:
                travis.haagen Travis Haagen
                QA Assignee:
                Alexander Dracka
              • Votes:
                0 Vote for this issue
                Watchers:
                2 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: