Closed tasso94 closed 1 year ago
ConcurrentModificationException
AuthenticationUtil#updateCache
, we loop over a copy of the Map<String, UserAuthentication> authentications
values; the elements are removed from the map, not from the listSecurityFilter
takes care of this (see EngineRequestAuthorizer
and SecurityFilter#sendUnauthorized
)👍 Review of backport is done.
Acceptance Criteria (Required on creation)
cacheTimeToLive
is configured in all distros to five minutes.<param-value/>
)0
, caching is disabled.groupIds
,tenantIds
, and app authorizations; this prevents, for instance, permissions being restricted for a user that is no longer part of thecamunda-admin
group.Hints
Links
Breakdown