[
https://issues.jboss.org/browse/WFCORE-1842?page=com.atlassian.jira.plugi...
]
Darran Lofthouse commented on WFCORE-1842:
------------------------------------------
+1 we removed useRealmRoles as it was confusing in the context of the legacy security
realms - now the roles are available from an Elytron SecurityIdentity making it possible
to enable a default 1:1 mapping makes sense again.
Support RBAC based on raw roles from an Identity
-------------------------------------------------
Key: WFCORE-1842
URL:
https://issues.jboss.org/browse/WFCORE-1842
Project: WildFly Core
Issue Type: Feature Request
Components: Domain Management, Security
Reporter: Pedro Igor
Assignee: Darran Lofthouse
Currently, RBAC requires a static mapping between standard roles and raw roles from an
identity.
We should be able to use RBAC without necessarily forcing this static mapping and just
consider the raw roles from the identity.
This issue may be related with exposing
{{org.jboss.as.controller.access.management.WritableAuthorizerConfiguration#useRealmRoles}}
in the management model.
--
This message was sent by Atlassian JIRA
(v6.4.11#64026)