Details
-
Bug
-
Resolution: Won't Fix
-
Neutral
-
None
-
5.7.10
-
None
Description
Steps to reproduce
- replace /server/filters/csrfTokenSecurity/bypasses/BypassAuthenticatedInAdminCentral with config.server.filters.csrfTokenSecurity.bypasses.BypassAuthenticatedInAdminCentral.yaml
(the latter is used in 6.2.10) - enable filter
Expected results
Filter is bypassed for /.magnolia/admincentral and authenticated user, Magnolia AdminCentral is accessible
Actual results
Filter is not bypassed, Magnolia AdminCentral is no longer usable
Workaround
Restore working config with GroovyRescueApp
Development notes
The following errors have been logged
- 2021-07-01 23:16:10,370 WARN magnolia.jcr.node2bean.impl.Node2BeanProcessorImpl: Did not manage to create a bean for node [/server/filters/csrfTokenSecurity/bypasses/BypassAuthenticatedInAdminCentral], this part of configuration will be skipped
- info.magnolia.jcr.node2bean.Node2BeanException: Failed to instantiate a bean of type [info.magnolia.voting.voters.BoolVoterSet] due to: [Guice configuration errors:
info.magnolia.voting.Voter<T>[] cannot be used as a key; It is not fully specified.
Checklists
Acceptance criteria