Uploaded image for project: 'Opencast'
  1. MH-12975

Inconsistent access control handling

    Details

    • Type: Bug
    • Status: Resolved
    • Priority: Major
    • Resolution: Fixed and reviewed
    • Affects Version/s: 6.0
    • Fix Version/s: None
    • Component/s: Backend Software
    • Labels:
      None
    • Severity:
      Security
    • Steps to reproduce:
      Hide
      Opencast's authorization service has two different methods of evaluating
      XACML (access control) attachments with should work similarly but do
      work differently resulting in unwanted denial of access in some cases.

      In the end both path should work the same way and could even share most
      of the code making the whole process less confusing and easier to
      understand.
      Show
      Opencast's authorization service has two different methods of evaluating XACML (access control) attachments with should work similarly but do work differently resulting in unwanted denial of access in some cases. In the end both path should work the same way and could even share most of the code making the whole process less confusing and easier to understand.

      TestRail: Results

        Attachments

          Activity

            People

            • Assignee:
              lkiesow Lars Kiesow
              Reporter:
              lkiesow Lars Kiesow
            • Watchers:
              1 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved:

                TestRail: Cases