feat(policy-RBAC): ensure RBAC policy overrides existing RBAC settings [R8S-777] (#1718)
This commit is contained in:
@@ -202,14 +202,6 @@ func (handler *Handler) updateEndpointGroup(tx dataservices.DataStoreTx, endpoin
|
||||
endpointsChanged = true
|
||||
}
|
||||
}
|
||||
|
||||
// Update user authorizations when endpoints are added/removed from the group
|
||||
// since group membership affects access control
|
||||
if endpointsChanged {
|
||||
if err := handler.AuthorizationService.UpdateUsersAuthorizationsTx(tx); err != nil {
|
||||
return nil, httperror.InternalServerError("Unable to update user authorizations", err)
|
||||
}
|
||||
}
|
||||
}
|
||||
|
||||
// Reconcile endpoints in the group if tags changed (but endpoints weren't already reconciled)
|
||||
|
||||
Reference in New Issue
Block a user