we should kick out logged in openids if they become unauthorized

Details

Type: Improvement
Status: Closed
Priority: Critical
Resolution: Fixed
Affects Version/s: 0.7.4
Fix Version/s: 0.7.4
Component/s: Chef Server
Labels:
None
Environment:

Chef Server 0.7.0

Description

If the authorized_openid_identifiers array is updated with new entries and the currently logged in user isn't one of them, they should be unauthorized on the next page change/refresh.

Activity

Ascending order - Click to sort in descending order

Hide

Permalink

jtimberman added a comment - 22/Jun/09 8:57 PM

Please to be fixing this issue?

Show

jtimberman added a comment - 22/Jun/09 8:57 PM Please to be fixing this issue?

Hide

Permalink

AJ Christensen added a comment - 24/Jun/09 9:53 AM

Fixed!

Show

AJ Christensen added a comment - 24/Jun/09 9:53 AM Fixed!

Hide

Permalink

AJ Christensen added a comment - 24/Jun/09 9:53 AM

Merged, pushed opscode/master.

Show

AJ Christensen added a comment - 24/Jun/09 9:53 AM Merged, pushed opscode/master.

Hide

Permalink

AJ Christensen added a comment - 26/Jun/09 1:49 AM

Unmerging this due to an issue that cropped up with client, and that authz controls like this will likely change majorly in 0.8

Show

AJ Christensen added a comment - 26/Jun/09 1:49 AM Unmerging this due to an issue that cropped up with client, and that authz controls like this will likely change majorly in 0.8

Hide

Permalink

AJ Christensen added a comment - 26/Jun/09 1:50 AM

Fixed and merged.

Show

AJ Christensen added a comment - 26/Jun/09 1:50 AM Fixed and merged.

People

Assignee:

AJ Christensen

Reporter:

jtimberman

Vote (0)

Watch (0)

Dates

Created:

11/Jun/09 11:44 PM

Updated:

26/Jun/09 1:50 AM

Resolved:

26/Jun/09 1:50 AM