Actions
Defect #635
closedAutomatic role approver needs ROLE_REQUEST_EXECUTE authority
Start date:
08/08/2017
Due date:
% Done:
100%
Estimated time:
Affected versions:
Owner:
Description
The approver of automatic role assignment to any node in organization structure needs ROLE_REQUEST_EXECUTE authority, otherwise the role assignment to users will fail on insufficient app privileges.
Exception is thrown in DefaultIdmRoleRequestService:210.
The problem here is that role request is made, but it deliberately fails on these privileges, which leads to broken role requests and automatic role assignment status.
In my opinion this is a bug, otherwise please provide a description of application privileges setup, ideally in as a documentation. Thanks!
Actions