Open grizzly opened 3 months ago
Do you replace the identity before or after the applyScope
call? While it shouldn't matter, knowing more about what you're trying to do helps with reproducing the issue.
Do you replace the identity before or after the
applyScope
call? While it shouldn't matter, knowing more about what you're trying to do helps with reproducing the issue.
The identity is replaced before, as part of the login process.
The identity is replaced before, as part of the login process.
So wouldn't the identity be consistent between the start of the controller action and the authorization check? Are you certain that the controller action is applying the policy scope? The tracking for whether or not an authorization check has been applied is very simple https://github.com/cakephp/authorization/blob/3.x/src/AuthorizationService.php#L117 and I don't see a way for it to misbehave.
I have to update the identity in my code, so I am using
I am adding a scope with:
$posts = $this->Authorization->applyScope($posts, 'moderate');
Without the prevouse setIdentity, all works fine. When setting a new Identity, it gives me the "did not apply any authorization checks" error.