Uploaded image for project: 'Crucible'
  1. Crucible
  2. CRUC-2889

Crowd-authentication is still not correctly respecting the list of "authorized users"

    XMLWordPrintable

Details

    • Bug
    • Resolution: Fixed
    • Low
    • 2.2-RC1
    • None
    • None

    Description

      FE-2273 implemented a check where the list of "all users" in the Crowd application was filtered by the authorized-groups returned by Crowd.

      The problem is, the Directories associated with an Application in Crowd can be marked "allow all users", and we don't check for that.

      We need a better way to ask Crowd for the list of all users visible by this Application.

      Attachments

        Issue Links

          is caused by

          Bug - A problem which impairs or prevents the functions of the product. FE-2273 Unauthorised users created on trusted request from JIRA when user is not in authorised group

          • Medium - Medium priority issues
          • Closed

          Activity

            People

              tom@atlassian.com Tom Davies
              mquail Matt Quail (Inactive)
              Votes:
              0 Vote for this issue
              Watchers:
              0 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved:

                Time Tracking

                  Estimated:
                  Original Estimate - 16h
                  16h
                  Remaining:
                  Time Spent - 7h Remaining Estimate - 9h
                  9h
                  Logged:
                  Time Spent - 7h Remaining Estimate - 9h
                  7h