If the file authentication backend is being used, the ewatch option is set to true, the refresh interval is configured to a non-disabled value, and an administrator changes a userβs groups, then that user may be able to access resources that their previous groups had access to.
CPE | Name | Operator | Version |
---|---|---|---|
github.com/authelia/authelia/v4 | lt | 4.38.0 | |
github.com/authelia/authelia/v4 | ge | 4.37.0 |