Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[ISSUE] Identity first user has no permissions - 8.6 alpha5 #2339

Open
jessesimpson36 opened this issue Sep 11, 2024 · 4 comments
Open

[ISSUE] Identity first user has no permissions - 8.6 alpha5 #2339

jessesimpson36 opened this issue Sep 11, 2024 · 4 comments
Assignees
@aabouzaid
Labels
code-freeze Issue eligible for work during the code freeze kind/issue Unidentified issue, it could be a bug, misconfig, or anything in between platform/aws Issues related to AWS platform/gcp Issues related to GCP

Comments

@jessesimpson36
Copy link
Contributor

jessesimpson36 commented Sep 11, 2024
edited by aabouzaid
Loading

Describe the issue:

Note

We found that the issue happens with and without multi-tenancy enabled.

If you try to authenticate to identity, you will be redirected to /unauthorized, which in a typical installation with Console on the base path, means that /unauthorized will be redirected to Console, and then you will see a 404 or 401 error.

the endpoint it redirects to might actually be /noPermissions. I'm forgetting.

To work around this issue, log into Keycloak and inside the camunda-platform realm, go to Users > demo > Role mapping and assign all of the role mappings to the first user, and you will get access to identity once more.

2024-09-11-151710_grim

Actual behavior:

Expected behavior:

How to reproduce:

Logs:

Environment:

Please note: Without the following info, it's hard to resolve the issue and probably it will be closed.

  • Platform:
  • Helm CLI version:
  • Chart version: 8.6.0-alpha5
  • Values file:
@jessesimpson36 jessesimpson36 added kind/issue Unidentified issue, it could be a bug, misconfig, or anything in between code-freeze Issue eligible for work during the code freeze labels Sep 11, 2024
@github-actions github-actions bot added platform/aws Issues related to AWS platform/gcp Issues related to GCP labels Sep 11, 2024
@jessesimpson36
Copy link
Contributor Author

https://github.com/camunda/distribution/issues/306

@jessesimpson36
Copy link
Contributor Author

I just learned that this issue affects separated ingress (without multitenancy enabled) as well, but not on combined ingress.

@drodriguez-305
Copy link
Contributor

drodriguez-305 commented Sep 12, 2024
edited
Loading

Also tested with multitenancy disabled and combined ingress with the same results.

@jessesimpson36 jessesimpson36 changed the title [ISSUE] 8.6alpha5 multitenancy first user has no permissions even to identity [ISSUE] 8.6alpha5 first user has no permissions even to identity Sep 19, 2024
@aabouzaid aabouzaid self-assigned this Sep 20, 2024
@aabouzaid aabouzaid changed the title [ISSUE] 8.6alpha5 first user has no permissions even to identity [ISSUE] Identity first user has no permissions - 8.6 alpha5 Sep 20, 2024
@aabouzaid
Copy link
Member

I confirm that the issue happens with and without multi-tenancy enabled.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@aabouzaid aabouzaid

Labels
code-freeze Issue eligible for work during the code freeze kind/issue Unidentified issue, it could be a bug, misconfig, or anything in between platform/aws Issues related to AWS platform/gcp Issues related to GCP
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@aabouzaid @jessesimpson36 @drodriguez-305