Uploaded image for project: 'Jackrabbit Oak'
  1. Jackrabbit Oak
  2. OAK-4346

SyncMBeanImpl.syncExternalUsers doesn't check for foreign IDP

    XMLWordPrintableJSON

Details

    • Bug
    • Status: Closed
    • Major
    • Resolution: Fixed
    • None
    • 1.5.2, 1.6.0
    • auth-external
    • None

    Description

      in the light of OAK-4264 i found that SyncMBeanImpl.syncExternalUsers doesn't verify that the given external-ids belong to the same IDP that the bean has been created for.

      my expectation for the result-messages was an operation key for (FOREIGN) but instead the user might even be synchronized depending on the behavior of the IDP or result in nsi if the a given userID is (by coincidence) not known to the IDP.

      Attachments

        Issue Links

          is related to

          Test - A new unit, integration or system test. OAK-4264 Improve testing of SyncMBeanImpl

          • Major - Major loss of function.
          • Closed

          Activity

            People

              angela Angela Schreiber
              angela Angela Schreiber
              Votes:
              0 Vote for this issue
              Watchers:
              0 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: