New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
@RPC.allow restrictions are not applied after restart of VOLTTRON #3168
Comments
schandrika
added a commit
to schandrika/volttron
that referenced
this issue
Apr 12, 2024
schandrika
changed the title
RPO allow restrictions are not applied after restart of VOLTTRON
@RPC.allow restrictions are not applied after restart of VOLTTRON
Apr 12, 2024
craig8
pushed a commit
that referenced
this issue
Apr 19, 2024
Merged
craig8
added a commit
that referenced
this issue
May 8, 2024
* Update readthedocs requirements.txt * Update conf.py * Update requirements_demo.txt Add missing pandas requirement for demo * work around for issue #3154 * Fix for security issue #3168 (#3169) * Fix for security issue #3168 * handling clean up errors in test * testing group commands in different test module * moved group and role test to different module * moved group and role test to different module * Added a cache for agent names since platform start * Fixes process overload from file events * fixed issue with variable definition. * Remove PersistentDict from web-user.json file. * Update admin_endpoints.py Handle behavior of removing PersistentDict * Update version to 9.0.1 --------- Co-authored-by: Chandrika Sivaramakrishnan <chandrika@pnnl.gov> Co-authored-by: Chandrika <schandrika@users.noreply.github.com> Co-authored-by: Andrew Rodgers <andrew@aceiotsolutions.com>
craig8
added a commit
that referenced
this issue
May 10, 2024
* Update readthedocs requirements.txt * Update conf.py * Update requirements_demo.txt Add missing pandas requirement for demo * work around for issue #3154 * Fix for security issue #3168 (#3169) * Fix for security issue #3168 * handling clean up errors in test * testing group commands in different test module * moved group and role test to different module * moved group and role test to different module * Added a cache for agent names since platform start * Fixes process overload from file events * fixed issue with variable definition. * Remove PersistentDict from web-user.json file. * Update admin_endpoints.py Handle behavior of removing PersistentDict * Update version to 9.0.1 --------- Co-authored-by: Chandrika Sivaramakrishnan <chandrika@pnnl.gov> Co-authored-by: Chandrika <schandrika@users.noreply.github.com> Co-authored-by: Andrew Rodgers <andrew@aceiotsolutions.com>
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Describe the bug
Auth restrictions on RPC methods specified using @RPC.allow decorators are not enforced on existing agents after a restart of VOLTTRON server. These are enforced on a newly installed agent or after auth update using "vctl auth" commands.
To Reproduce
Expected behavior
Auth rules should be enforced for newly installed agents and existing agents
The text was updated successfully, but these errors were encountered: