[MID-6007] Preview changes requires an extra authorization - Evolveum Jira

XML

Word

Printable

Details

Type: Bug
Status: Closed
Priority: Minor
Resolution: Fixed
Affects Version/s: 4.0.2
Fix Version/s: 4.1
Component/s: GUI
Labels:
- #mid101
- #mid102

Subscription:
Internal
Backport Version:

4.0.2

Description

User has permission to update some of his attributes.
Everything works, but Preview changes throws 403.

Log:

2020-01-20 10:50:35,574 [MODEL] [http-nio-8080-exec-3] TRACE (com.evolveum.midpoint.security.api.SecurityUtil): Denied access to FilterInvocation: URL: /admin/previewChanges?3 by X000005 : Not authorized; one of the following authorization actions is required: [http://midpoint.evolveum.com/xml/ns/public/security/authorization-ui-3#usersAll, http://midpoint.evolveum.com/xml/ns/public/security/authorization-ui-3#user, http://midpoint.evolveum.com/xml/ns/public/security/authorization-ui-3#rolesAll, http://midpoint.evolveum.com/xml/ns/public/security/authorization-ui-3#role, http://midpoint.evolveum.com/xml/ns/public/security/authorization-ui-3#orgAll, http://midpoint.evolveum.com/xml/ns/public/security/authorization-ui-3#orgUnit, http://midpoint.evolveum.com/xml/ns/public/security/authorization-ui-3#servicesAll, http://midpoint.evolveum.com/xml/ns/public/security/authorization-ui-3#service, http://midpoint.evolveum.com/xml/ns/public/security/authorization-3#guiAll, http://midpoint.evolveum.com/xml/ns/public/security/authorization-ui-3#all]

The user does NOT have any of the mentioned authz and will not have them. Why Preview page wants them?

Authorizations are attached.

Attachments

- Sort By Name
- Sort By Date
- Ascending
- Descending
- Thumbnails
- List
- Download All

ExportedData_RoleType_2020_01_20_10_48_42.xml
16 kB
20/Jan/20 10:52 AM

Activity

People

Assignee:: Ivan Noris

Reporter:: Ivan Noris

Votes:: 1 Vote for this issue

Watchers:: 3 Start watching this issue

Dates

Created:: 20/Jan/20 10:53 AM

Updated:: 20/Jul/20 4:24 PM

Resolved:: 27/Mar/20 8:20 PM