View Issue Details
ID | Project | Category | View Status | Date Submitted | Last Update |
---|---|---|---|---|---|
0007746 | 10000-018: Role-Based Security | Spec | public | 2022-02-18 08:06 | 2022-03-11 15:22 |
Reporter | Matthias Damm | Assigned To | Matthias Damm | ||
Priority | normal | Severity | minor | Reproducibility | have not tried |
Status | closed | Resolution | fixed | ||
Product Version | 1.05 | ||||
Fixed in Version | 1.05.02 RC1 | ||||
Summary | 0007746: IdentityCriteriaType Application and user token | ||||
Description | The current definition for IdentityCriteriaType Application is Randy indicated in a discussion in the security WG that the limitation to allow the Application authentication criteria type only with anonymous user token would be a unnecessary limitation. When adding this feature, the assumption was that this is used for headless applications that do not have a user. I do not know if it is a use case that in one session, one role is assigned based on the application identity and another role is assigned based on the user token. | ||||
Tags | No tags attached. | ||||
Commit Version | |||||
Fix Due Date | |||||
Date Modified | Username | Field | Change |
---|---|---|---|
2022-02-18 08:06 | Matthias Damm | New Issue | |
2022-02-18 08:15 | Matthias Damm | Description Updated | |
2022-02-18 08:15 | Matthias Damm | Description Updated | |
2022-03-11 15:22 | Matthias Damm | Assigned To | => Matthias Damm |
2022-03-11 15:22 | Matthias Damm | Status | new => resolved |
2022-03-11 15:22 | Matthias Damm | Resolution | open => fixed |
2022-03-11 15:22 | Matthias Damm | Note Added: 0016349 | |
2022-03-11 15:22 | Jim Luth | Status | resolved => closed |
2022-03-11 15:22 | Jim Luth | Fixed in Version | => 1.05.02 RC1 |
2022-03-11 15:22 | Jim Luth | Note Added: 0016350 |