Feature #8544

If no role is authenticated, an "Anonymous" role should be returned.

Added by Andreas Förthner over 11 years ago. Updated almost 11 years ago.

Status:
Resolved
Priority:
Should have
Category:
Security
Start date:
2010-06-29
Due date:
% Done:

100%

Estimated time:
PHP Version:
Has patch:
Complexity:

Description

This can be done in the security context, by returning a fixed role, when no other role is authenticated.

#1

Updated by Andreas Förthner over 11 years ago

After discussing this we came to the following conclustion:

  • You will always have a role called "Everybody", no matter, if you are authenticated or not.
  • This role will be set in the policy by the policy service. So it is not overwriteable.
#2

Updated by Andreas Förthner over 11 years ago

  • Status changed from Accepted to Resolved
  • % Done changed from 0 to 100

Applied in changeset r4761.

#3

Updated by Karsten Dambekalns over 11 years ago

  • Target version set to 1.0 alpha 10

Also available in: Atom PDF