In order to be included in Permission.getAll(), a Permission needs to be initialized in a static block inside an @Extension or otherwise definitely loaded during startup.
The visible symptom is that you might configure an authorization strategy such as matrix with all permissions granted, then go back later and see SCM/Tag missing, because it was unknown earlier.
|Link||This issue is related to SECURITY-91 [ SECURITY-91 ]|
|Labels||api permissions||2.0 api permissions|
|Labels||2.0 api permissions||2.0-rejected api permissions|
|Remote Link||This issue links to "Related discussion in PR 882 (Web Link)" [ 14640 ]|
|Workflow||JNJira [ 148032 ]||JNJira + In-Review [ 177067 ]|
|Assignee||Jesse Glick [ jglick ]||Matt Sicker [ jvz ]|
|Status||Open [ 1 ]||In Progress [ 3 ]|
|Status||In Progress [ 3 ]||In Review [ 10005 ]|
|Remote Link||This issue links to "PR-3713 (Web Link)" [ 21975 ]|