Incorrect policy information on Secured stereotype #136
Comments
|
Hi @SarperMUTLUBAY, I have checked this for myself and can see that we are indeed generating this incorrectly here, I have logged an issue for us to fix this as soon as possible. In the meantime it is possible to assign multiple Security stereotypes to the same endpoint in Intent Architect with each only having a single policy, which will allow you to work around this problem. Our apologies for any inconvenience caused. Please don't hesitate to reach out should you have any comments or questions. |
|
If I add multiple policy with multiple attributes user must meet all policies criteria. It does not work like "policy1 or policy2", it works "policy1 and policy2". |
|
Hi @SarperMUTLUBAY, According to Microsoft's documentation, multiple attributes will have an AND behaviour: Do you need it to be ANDing or ORing the policies? |
|
Hi @JonathanLydall
|
|
Hi @SarperMUTLUBAY, As per Microsoft's Documentation, it's not possible to "OR" policies at the controller method level, the only option is to apply multiple authorization attributes which as you said results in an "AND" situation. If you want to "OR" policies you would need to make a policy per OR policy combination (e.g. Will one of the above work for you? |
What happened?
Hi team,
Me again and I'm here with a new issue. According to the Secured stereotype, we can add multiple policies but in fact we can not. .Net default authorization system doesn't support multiple policies and assumes that a comma separated value is a single policy.
For example, if I add 3 separate policies named "Marketing", "Support", "Service" separated by commas, It throws an error with the
The AuthorizationPolicy named: 'Marketing,Support,Service' was not found.messageHow is This Issue Affecting You?
✅ I have a workaround, but a fix would be ideal (Minor)
What version of Intent Architect are you using?
4.4.0
Additional information
No response
The text was updated successfully, but these errors were encountered: