You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@syncope.apache.org by il...@apache.org on 2022/03/22 16:27:25 UTC
[syncope] branch master updated: Fixing security checks in case of realm change during Group update
This is an automated email from the ASF dual-hosted git repository.
ilgrosso pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/syncope.git
The following commit(s) were added to refs/heads/master by this push:
new 418ac72 Fixing security checks in case of realm change during Group update
418ac72 is described below
commit 418ac721554ff580bff73789fc992c9f11c7feb0
Author: Francesco Chicchiriccò <il...@apache.org>
AuthorDate: Tue Mar 22 17:15:14 2022 +0100
Fixing security checks in case of realm change during Group update
---
.../logic/src/main/java/org/apache/syncope/core/logic/GroupLogic.java | 3 +++
1 file changed, 3 insertions(+)
diff --git a/core/idrepo/logic/src/main/java/org/apache/syncope/core/logic/GroupLogic.java b/core/idrepo/logic/src/main/java/org/apache/syncope/core/logic/GroupLogic.java
index 2e2279a..6c88e10 100644
--- a/core/idrepo/logic/src/main/java/org/apache/syncope/core/logic/GroupLogic.java
+++ b/core/idrepo/logic/src/main/java/org/apache/syncope/core/logic/GroupLogic.java
@@ -230,6 +230,9 @@ public class GroupLogic extends AbstractAnyLogic<GroupTO, GroupCR, GroupUR> {
before.getRight());
// check if group can still be managed by the caller
+ authRealms = RealmUtils.getEffective(
+ AuthContextUtils.getAuthorizations().get(IdRepoEntitlement.GROUP_UPDATE),
+ result.getEntity().getRealm());
groupDAO.securityChecks(
authRealms,
after.getLeft().getKey(),