[RUNTIME-2661] Cache issue in RightManager - JIRA Ametys

Type: Bug
Resolution: Fixed
Priority: Major
Fix Version/s: 4.3.8, 4.4.0
Affects Version/s: None
Component/s: None
Labels:
None

Sprint:
4.4 M6

There is a important cache issue on the first cache of RightManager (cache for the root contexts)

See org.ametys.plugins.core.impl.right.AbstractProfileStorageBasedAccessController._hasUserAnyPermissionOnWorkspace(Set<Object>, UserIdentity, Set<GroupIdentity>, Set<String>)

To fill the first cache, we call _profileAssignmentStorageEP.hasUserAnyPermission with a set of profile's ids. The profiles correspond to all profiles which contains the required right.

This method returns true as soon as one profile matches.

Then the cache is filled, BUT if the method returns true, the cache is filled with true for all profile of the set (big mistake).

Here, to fill correctly the cache, we need to get the set of allowed profiles for theses rootContexts among the set of given profiles.

In ProfileAssignmentStorage the methods
boolean hasXXXAllowedProfile(Set< ? extends Object> rootContexts, Set<String> profileIds)
should be replaced by
Set<String> getXXXAllowedProfiles(Set< ? extends Object> rootContexts, Set<String> profileIds)

blocks

CMS-8776 some icons are available even without rights : user directoty, expert html, requests, last publications

Closed

Est référencé par

RUNTIME-3506 Reoptimize the cache in RightsManager

Closed

Assignee:: Raphaël Franchet

Reporter:: Laurence Aumeunier

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Created:: 15/Dec/17 18:21

Updated:: 02/Mar/21 11:40

Resolved:: 20/Nov/20 11:29

Details

Description

Attachments

Issue Links

Activity

People

Dates