Brute Force Detection is disabled when updating frontenUrl via admin client #21409
Labels
area/authentication
Indicates an issue on Authentication area
kind/bug
Categorizes a PR related to a bug
release/24.0.0
team/core-clients
Milestone
Before reporting an issue
Area
admin/client/node
Describe the bug
When the frontenUrl is updated through the admin client e.g.:
the brute force detection mechanism is unexpectedly disabled.
Version
21.1.1
Expected behavior
Changing the frontenUrl attribute should not affect brute force settings
Actual behavior
Brute force detection is disabled when changing frontenUrl
How to Reproduce?
Anything else?
Same behaviour with security header settings. They are also deleted when the frontendUrl is updated. Seems to affect all security defence settings of the realm
The text was updated successfully, but these errors were encountered: