Defect #2573
openUser with the permission IdmIdentity - Administration gets the exception "Insufficient access rights"
0%
Description
This bug happens in combination with the current product in develop (10.7.0-SNAPSHOT build 2d536b7), it works well with 10.6.2.
If you set the permissions of the role as "IdmIdentity - Administration - CodeableEvaluator or IdentityByTreeNodeEvaluator":
The user who has this role logs in and gets "Insufficient access rights". (It doesn't matter if the user is in the scope of the evalutor or not, i.e. "josefnovak" has the same problem as others.)
However, if you remove the role, then the user can login without any problems (the userRole is set by default).
If you disable pwd reset module, then it also works correctly.
Workaround: instead of "Administration", you can set all the permissions one by one, then the problem doesn't occur.
Files