Uploaded image for project: 'Nuxeo Platform'
  1. Nuxeo Platform
  2. NXP-24961

OpenID module authentication cannot read user directory

    XMLWordPrintable

    Details

    • Type: Bug
    • Status: Resolved
    • Priority: Critical
    • Resolution: Fixed
    • Affects Version/s: None
    • Fix Version/s: 9.10-HF09, 10.2
    • Component/s: Open Id
    • Release Notes Summary:
      The OpenID module authentication can read the user directory.
    • Tags:
    • Backlog priority:
      1,000
    • Sprint:
      nxcore 10.2.5
    • Story Points:
      3

      Description

      When OpenID UserResolver impl classes try to get access to the uiser directory to consolidate provider's userinfo with a user registered in our user directory, the directory's access protection denied the access due to a missing login context.

      OpenID authentication filter has to wrap the user's resolution in a org.nuxeo.runtime.api.Framework#doPrivileged(java.lang.Runnable) call.

        Attachments

          Issue Links

          is related to

          Bug - A problem which impairs or prevents the functions of the product. NXP-25187 Fix OpenID module authentication

          • Major - Major loss of function.
          • Resolved

            Activity

              People

              • Votes:
                0 Vote for this issue
                Watchers:
                3 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved:

                  Time Tracking

                  Estimated:
                  Original Estimate - 0 minutes
                  0m
                  Remaining:
                  Remaining Estimate - 0 minutes
                  0m
                  Logged:
                  Time Spent - 1 day
                  1d