Uploaded image for project: 'Ignite'
  1. Ignite
  2. IGNITE-12589

Remote thin client operations are not authorized correctly.

    XMLWordPrintableJSON

Details

    • Bug
    • Status: Resolved
    • Major
    • Resolution: Fixed
    • 2.7.6
    • 2.8.1
    • None

    Description

      In the current Ignite security approach security subject id is considered to be a node id (see IgniteSecurityProcessor#withContext()). In the case of thin clients, this approach doesn't work correctly. If some operation is executed on behalf of the thin client on a remote node (node that is different from one to which thin client connection was established), it's impossible in the same way as for a node to obtain a thin client security subject information.

      Attachments

        Issue Links

          causes

          Bug - A problem which impairs or prevents the functions of the product. IGNITE-12579 JDBC SQL INSERT operation hangs with security enabled.

          • Major - Major loss of function.
          • Resolved

          Improvement - An improvement or enhancement to an existing feature or task. IGNITE-11992 Improvements for new security approach

          • Major - Major loss of function.
          • Patch Available
          is fixed by

          Improvement - An improvement or enhancement to an existing feature or task. IGNITE-12759 Getting a SecurityContext from GridSecurityProcessor

          • Major - Major loss of function.
          • Resolved
          links to

          Web Link Related discussion on Dev mailing list

          Activity

            People

              Unassigned Unassigned
              PetrovMikhail Mikhail Petrov
              Votes:
              0 Vote for this issue
              Watchers:
              6 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: