Skip to content

[RORDEV-1606] ror_kbn_auth used in context of local groups - logged user metadata fix #1156

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 5 commits into from
Sep 13, 2025
Merged

[RORDEV-1606] ror_kbn_auth used in context of local groups - logged user metadata fix #1156

merged 5 commits into from
Sep 13, 2025

Conversation

coutoPL
Copy link
Collaborator

@coutoPL coutoPL commented Sep 9, 2025
edited by coderabbitai bot
Loading

🐞Fix (KBN) Logout didn't invalidate app session when the ror_kbn_auth rule is used with the groups rule

Summary by CodeRabbit

  • New Features

    • Authentication metadata propagation: user origin and JWT token are now preserved in block metadata for more consistent access decisions across configurations.

  • Tests

    • Added parity tests covering root-level vs local-group rules for multiple auth methods (ror_kbn_auth, jwt, LDAP variants) and assertions that JWT and user metadata are present and consistent.

  • Chores

    • Bumped plugin version to 1.67.0-pre1.

@coutoPL coutoPL requested a review from mateuszkp96 September 9, 2025 10:03
@coderabbitai coderabbitai

This comment was marked as off-topic.

Sign in to view
coderabbitai[bot]

This comment was marked as resolved.

Sign in to view

mateuszkp96
mateuszkp96 approved these changes Sep 13, 2025
View reviewed changes
Copy link
Collaborator

@mateuszkp96 mateuszkp96 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

@coutoPL coutoPL merged commit a6b8a0a into develop Sep 13, 2025
1 of 17 checks passed
@coutoPL coutoPL deleted the bugfix/RORDEV-1606 branch September 13, 2025 07:53
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@coderabbitai coderabbitai[bot] coderabbitai[bot] left review comments

@mateuszkp96 mateuszkp96 mateuszkp96 approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@coutoPL @mateuszkp96