Uploaded image for project: 'DSpace'
  1. DSpace
  2. DS-1216

ShibAuthentication method getSpecialGroups goes against spec in requiring shib login

    Details

    • Type: Bug
    • Status: Volunteer Needed (View Workflow)
    • Priority: Minor
    • Resolution: Unresolved
    • Affects Version/s: 1.8.2
    • Fix Version/s: None
    • Component/s: None
    • Attachments:
      0
    • Comments:
      0
    • Documentation Status:
      Needed

      Description

      The authentication interface description for getSpecialGroups states that the user need not be logged in, however the current implementation returns an empty list if the user is not logged in (i.e. EPerson is null) or not logged in via shib. Additionally, there is a misleading log line about adding the EPerson to special groups. This bug is distinct from those described in other tickets for the same class. I have tested the removal of these contraints and not noticed any ill effects while allowing the intended behavior of allowing shib affiliations to effect special groups authorization.

        Attachments

          Activity

            People

            • Assignee:
              Unassigned
              Reporter:
              whays Bill Hays
            • Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

              Dates

              • Created:
                Updated:

                Time Tracking

                Estimated:
                Original Estimate - 1 hour
                1h
                Remaining:
                Remaining Estimate - 1 hour
                1h
                Logged:
                Time Spent - Not Specified
                Not Specified