[
https://issues.apache.org/jira/browse/FC-113?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14733877#comment-14733877
]
Shawn McKinney commented on FC-113:
-----------------------------------
Hello Olaf, thanks for weighing in on this.
One of the requirements for the delegated admin canAssign/Deassign/Grant/Revoke
checks is the role range attribute (begin and end) must be set on the admin
role prior to being assigned to the user. If those attrs are not assigned, the
check will never return true. Can you site a test case where the role range
attributes are set, and match, but still returns false? You can attach the
ldif extract of the admin role to this ticket and we use to verify the bug.
> Delegated access manager throws null pointer exception if admin role range
> not set
> ----------------------------------------------------------------------------------
>
> Key: FC-113
> URL: https://issues.apache.org/jira/browse/FC-113
> Project: FORTRESS
> Issue Type: Bug
> Affects Versions: 1.0.0-RC41
> Reporter: Chris Pike
> Priority: Minor
>
> When calling canAssign in the delegated access manager, getting a null
> pointer exception if admin role range isn't set. See line 354 and 428 of
> DelAccessMgrImpl.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
