[
https://issues.apache.org/jira/browse/SYNCOPE-1922?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Andrea Patricelli resolved SYNCOPE-1922.
----------------------------------------
Resolution: Resolved
> Disallow searches by encrypted attribute
> ----------------------------------------
>
> Key: SYNCOPE-1922
> URL: https://issues.apache.org/jira/browse/SYNCOPE-1922
> Project: Syncope
> Issue Type: Bug
> Components: core
> Affects Versions: 3.0.14, 4.0.2
> Environment: PostgreSQL JSONb
> Reporter: Andrea Patricelli
> Assignee: Andrea Patricelli
> Priority: Major
> Fix For: 3.0.15, 4.0.3, 4.1.0
>
> Time Spent: 1h 20m
> Remaining Estimate: 0h
>
> # Define an encrypted plain schema and assing it to USER any object
> # Assign a value to such plain attribute of some user and save
> # Try to search by the encrypted plain attribute, the following exception
> raises
> {noformat}
> GenericPersistence: ReportingSQLException: ERROR: syntax error at end of
> jsonpath input
> Posizione: 182 {prepstmnt 1849864243 SELECT COUNT(DISTINCT t.id) FROM
> SyncopeUser t,jsonb_path_query_array(plainattrs, '$[*] ?
> (@.schema=="transparent")."values"') AS transparent WHERE
> ((jsonb_path_exists(transparent, '$[*] ? (@.stringValue == test)')) AND
> (realm_id IN (?)))} [code=0, state=42601]{noformat}
> This error appears only while JSONb persistence is enabled.
> Generally speaking searches by encrypted attributes shouldn't be allowed.
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
