[
https://issues.apache.org/jira/browse/NIFI-4740?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16313711#comment-16313711
]
ASF subversion and git services commented on NIFI-4740:
-------------------------------------------------------
Commit 81d3f6f3269efacfadbeabd6ec84fad990535299 in nifi's branch
refs/heads/master from [~kdoran]
[ https://git-wip-us.apache.org/repos/asf?p=nifi.git;h=81d3f6f ]
NIFI-4740 Fix User Group Data Integrity Checks. This closes #2378
Removes user existence check from FileUserGroupProvider when
group is created or updated. Replaces it with check in the
Authorizer Decorator class created by Authorizer Factory, so
that all providers are used.
Also fixes bug when searching for group membership by user
that returns results across all providers.
> Composite UserGroupProviders don't consider all providers when looking up
> users and groups
> ------------------------------------------------------------------------------------------
>
> Key: NIFI-4740
> URL: https://issues.apache.org/jira/browse/NIFI-4740
> Project: Apache NiFi
> Issue Type: Bug
> Components: Core Framework, Extensions
> Reporter: Kevin Doran
> Assignee: Kevin Doran
> Fix For: 1.5.0
>
>
> In FileUserGroupProvider, when a new group is created, all the users in the
> group are checked to ensure they are known to the FileUserGroupProvider prior
> to creating the group.
> This check should be removed, and an integrity check should be placed in the
> entity managing all user group providers (eg, CompositeUserGroupProvider and
> CompositeConfigurableUserGroupProvider).
> Also, when loading a user identity, all UserGroupProviders should be
> considered for finding groups the user to which the user belongs.
--
This message was sent by Atlassian JIRA
(v6.4.14#64029)
