[GEOS-7803] GeoFence Embedded Server does not check for plain Rule Services - JIRA

Details

Type: Improvement
Status: Closed
Priority: Medium
Resolution: Fixed
Affects Version/s: 2.9.2, 2.10-RC1
Fix Version/s: 2.9.3, 2.10.0, 2.11-beta
Component/s: Community modules, GeoFence, Security
Labels:
None

Description

GeoFence Server InternalUserResolver currently checks only User Group Services

for (String serviceName : securityManager.listUserGroupServices()) {
...

this completely ignoring roles associate to users from a plain Role Service.

The proposal is to add a check for Role Services too

for (String roleServiceName : securityManager.listRoleServices()) {
if (securityManager.loadRoleService(roleServiceName).getRolesForUser(username) != null &&
!securityManager.loadRoleService(roleServiceName).getRolesForUser(username).isEmpty())

{ return true; }

}

Attachments

Activity

People

Assignee:

Alessio Fabiani

Reporter:

Alessio Fabiani

Votes:

0 Vote for this issue

Watchers:

1 Start watching this issue

Dates

Created:

19/Oct/16 12:54 PM

Updated:

25/Oct/16 6:19 PM

Resolved:

25/Oct/16 6:19 PM