[jira] [Commented] (SYNCOPE-603) Remote unauthorized exception when a user makes a request to add a role to his profile

Fri, 07 Nov 2014 00:11:07 -0800 

    [ 
https://issues.apache.org/jira/browse/SYNCOPE-603?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14201771#comment-14201771
 ] 

Francesco Chicchiriccò commented on SYNCOPE-603:
------------------------------------------------

This is very dependent on the workflow definition.

If, when requesting a new role and saving, the user goes into a status which is 
not included in the {{authentication.statuses}} configuration parameter, this 
method from org.apache.syncope.console.rest.UserSelfRestClient, invoked by 
SyncopeApplication.java:245

{code}
public UserTO read() {
  return getService(UserSelfService.class).read();
}
{code}

will raise an authorization exception because user is now not allowed to 
authenticate any more.

I think that such exception should just be controlled and possibly changed into 
a console-side exception that will generate the standard console error page.

> Remote unauthorized exception when a user makes a request to add a role to 
> his profile
> --------------------------------------------------------------------------------------
>
>                 Key: SYNCOPE-603
>                 URL: https://issues.apache.org/jira/browse/SYNCOPE-603
>             Project: Syncope
>          Issue Type: Bug
>          Components: core
>    Affects Versions: 1.2.1
>            Reporter: Marco Di Sabatino Di Diodoro
>             Fix For: 1.2.1, 1.3.0
>
>
> Steps to reproduce the exception:
> 1) Create a new user
> 2) Sign in with the new user
> 3) Click the name of the user to edit the profile
> 4) Add a role and save
> 5) Open again the profile
> returns an error:
> Caused by: java.security.AccessControlException: Remote unauthorized exception
>       at 
> org.apache.syncope.client.rest.RestClientExceptionMapper.fromResponse(RestClientExceptionMapper.java:65)
>  ~[syncope-client-1.2.1-SNAPSHOT.jar:?]
>       at 
> org.apache.syncope.client.rest.RestClientExceptionMapper.fromResponse(RestClientExceptionMapper.java:39)
>  ~[syncope-client-1.2.1-SNAPSHOT.jar:?]
>       at 
> org.apache.cxf.jaxrs.client.ClientProxyImpl.checkResponse(ClientProxyImpl.java:302)
>  ~[cxf-rt-rs-client-3.0.2.jar:3.0.2]
>       at 
> org.apache.cxf.jaxrs.client.ClientProxyImpl.handleResponse(ClientProxyImpl.java:725)
>  ~[cxf-rt-rs-client-3.0.2.jar:3.0.2]
>       at 
> org.apache.cxf.jaxrs.client.ClientProxyImpl.doChainedInvocation(ClientProxyImpl.java:683)
>  ~[cxf-rt-rs-client-3.0.2.jar:3.0.2]
>       at 
> org.apache.cxf.jaxrs.client.ClientProxyImpl.invoke(ClientProxyImpl.java:224) 
> ~[cxf-rt-rs-client-3.0.2.jar:3.0.2]
>       at com.sun.proxy.$Proxy228.read(Unknown Source) ~[?:?]
>       at 
> org.apache.syncope.console.rest.UserSelfRestClient.read(UserSelfRestClient.java:47)
>  ~[UserSelfRestClient.class:?]



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)

Reply via email to