You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@ignite.apache.org by "Ilya Kasnacheev (Jira)" <ji...@apache.org> on 2020/04/22 08:28:00 UTC

[jira] [Updated] (IGNITE-9988) Thin client: integration with 3rd party security may not work properly

     [ https://issues.apache.org/jira/browse/IGNITE-9988?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Ilya Kasnacheev updated IGNITE-9988:
------------------------------------
    Labels: security vulnerability  (was: security)

> Thin client: integration with 3rd party security may not work properly
> ----------------------------------------------------------------------
>
>                 Key: IGNITE-9988
>                 URL: https://issues.apache.org/jira/browse/IGNITE-9988
>             Project: Ignite
>          Issue Type: Task
>          Components: security, sql
>    Affects Versions: 2.6
>            Reporter: Vladimir Ozerov
>            Assignee: Vladimir Ozerov
>            Priority: Major
>              Labels: security, vulnerability
>             Fix For: 2.8
>
>
> Current thin client handler can delegate to 3rd party security if it is enabled. However, it fails to set proper security context. As a result, certain operations may remain unauthorized.



--
This message was sent by Atlassian Jira
(v8.3.4#803005)