[ 
https://issues.apache.org/jira/browse/UNOMI-698?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=18095507#comment-18095507
 ] 

Serge Huber commented on UNOMI-698:
-----------------------------------

h2. Re-targeted to unomi-3.2.0

Moved fixVersion from {{unomi-3.1.0}} to {{unomi-3.2.0}}.

Allowlisting or blocklisting which profile properties are copied into the 
session object is a storage/behaviour change. Many rules and actions assume the 
current full copy. A safe change needs config design, runtime behaviour change, 
integration tests, and session migration — too large for the 3.1.0 GA window.

Note: {{requiredProfileProperties}} on {{/context.json}} only filters 
*response* profile properties to the client; it does not change internal 
session storage.

h2. Workaround for 3.1

Use {{requiredProfileProperties}} / concealed property tags to limit what 
clients receive; accept full session copy in persistence until 3.2 delivers 
allowlist support.

> Do not copy all profile properties in the session object
> --------------------------------------------------------
>
>                 Key: UNOMI-698
>                 URL: https://issues.apache.org/jira/browse/UNOMI-698
>             Project: Apache Unomi
>          Issue Type: New Feature
>            Reporter: romain.gauthier
>            Priority: Major
>             Fix For: unomi-3.2.0
>
>
> Currently, the profile is entirely copied to the session. This is needed as 
> many rules and actions assume the presence of this copy. However, it would be 
> nice to have a logic to avoid copying all properties and instead have a 
> forbidden list or even better: an "allowlist" that would only copy some 
> properties. 
> This would reduce Unomi size and make things less complex. 
> Migration of existing sessions should be taken into account



--
This message was sent by Atlassian Jira
(v8.20.10#820010)

Reply via email to