Broadleaf Microservices
  • v1.0.0-latest-prod

Auth Release Notes for 2.1.5-GA

Tip
The 2.x versions are Spring Boot 3 compatible.

Requirements

  • JDK 17 is required for Broadleaf release trains 2.0.0-GA, and beyond.

New Permissions and Scopes

New permissions and scopes have been added and should be inserted into the auth database with the following SQL:

INSERT INTO blc_security_scope ("id", "name", "open")
VALUES ('-3000', 'CART_INTERNAL_ATTRIBUTES', 'N');
INSERT INTO blc_permission_scope ("id", "permission", "is_permission_root", "scope_id")
VALUES ('-3000', 'CART_INTERNAL_ATTRIBUTES', 'Y', '-3000');
INSERT INTO blc_user_permission ("id", "archived", "last_updated", "name", "is_account_perm", "user_assignable") VALUES ('-3000', 'N', '1970-01-01 00:00:00.000', 'ALL_CART_INTERNAL_ATTRIBUTES', 'N', 'Y');

If you’re consuming the openapi client for use with OpenAPI, the following permission updates are necessary:

INSERT INTO blc_client_scopes ("id", "scope") VALUES ('openapi', 'CART_INTERNAL_ATTRIBUTES');
INSERT INTO blc_client_permissions (id, "permission") VALUES ('openapi', 'ALL_CART_INTERNAL_ATTRIBUTE');