Details
-
Bug
-
Resolution: Duplicate
-
High
-
5.1
-
None
Description
After adding or removing policies to a role, through legacy admin backoffice, the Symfony SPI Cache is not updated accordingly.
Steps to reproduce:
- optional: create a custom 'testmodule' module with a 'testfunc' function
- optional: create a custom controller view to verify access and configure necessary routing. sample code:
public function testAction( ) { $grantStr = $this->getRepository()->hasAccess( 'testmodule', 'testfunc' ) ? 'granted' : 'NOT granted'; return new Response( 'Access to testmodule/testfunc is: ' . $grantStr ); }
- In the backoffice, grant this policy to the 'editors' role and save.
- In the frontend login as editor, access the view configured above.
- Verify that response is: "Access to testmodule/testfunc is: granted"
- In the backoffice, remove the policy from editors.
- In the frontend refresh the page: response is still granted.
- Log out, log in again, response is still granted.
- Clear cache in admin backoffice
- frontend response is now "NOT granted"
Attachments
Issue Links
- duplicates
-
EZP-20880 HttpCache purge is not being triggered when permissions change
- Closed
- relates to
-
EZP-22360 SPI cache for roles not updated when moving user to different group in legacy
- Closed
-
EZP-23206 Multiple versions with status 'Published' when using asynchronous publishing
- Closed
-
EZP-23214 User is logged out as result of role/policy changes (Memcache sessions)
- Closed
-
EZP-23267 Memcache persistence cache: user policies cache never cleared
- Closed