[security-dev] lookupIdentityById requires preconfigured Tiers
Bill Burke
bburke at redhat.com
Wed Jul 10 19:45:59 EDT 2013
Ok, I was going to add a getPartitions() method to IdentityStore, but
this just won't scale. Instead I changed
DefaultIdentityManager.checkIfIdentityTypeExists() to take into account
the identityType's partition id if it is set. This fixes my grantRole()
problem.
The question is on whether IdentityManager.lookupIdentityById() needs to
be fixed. If this method is supposed to be scoped to the partition,
then its ok, otherwise it will need to be fixed.
On 7/10/2013 7:12 PM, Bill Burke wrote:
> A problem I just ran into with my dynamic tier creation/deletion is that
> DefaultIdnetityManager.lookupIdentityById() requires that tiers be
> preconfigured and listed in the store's config. So, if you're doing a
> realm.grantRole() for a dynamically created Tier-based Role, it won't
> work :(
>
> I'm working on a fix now.
>
--
Bill Burke
JBoss, a division of Red Hat
http://bill.burkecentral.com
More information about the security-dev
mailing list