New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Read Only Access of a realm clients' Authz is broken for Admin Console #24586
Comments
I have verified this bug. |
Hi @hmlnarik Since you took this issue, this info might be helpful for you: I think I have already found the cause of this bug. The check for "view-authorization" is missing in this line of code: code_line_link CC: @ssilvert |
Closes: keycloak#24586 Signed-off-by: Hynek Mlnarik <hmlnarik@redhat.com>
Closes: keycloak#24586 Signed-off-by: Hynek Mlnarik <hmlnarik@redhat.com>
@hmlnarik I found a related issue, in case you have some spare time to work on it :) |
Closes: #24586 Signed-off-by: Hynek Mlnarik <hmlnarik@redhat.com>
Closes: keycloak#24586 Signed-off-by: Hynek Mlnarik <hmlnarik@redhat.com>
Closes: keycloak#24586 Signed-off-by: Hynek Mlnarik <hmlnarik@redhat.com> (cherry picked from commit c03c2e9)
Closes: keycloak#24586 Signed-off-by: Hynek Mlnarik <hmlnarik@redhat.com> Signed-off-by: Kamontat Chantrachirathumrong <14089557+kamontat@users.noreply.github.com>
Closes: keycloak#24586 Signed-off-by: Hynek Mlnarik <hmlnarik@redhat.com> Signed-off-by: ShefeeqPM <86718986+ShefeeqPM@users.noreply.github.com>
Fixes keycloak#24586 Signed-off-by: Hynek Mlnarik <hmlnarik@redhat.com>
Fixes #24586 Signed-off-by: Hynek Mlnarik <hmlnarik@redhat.com>
Fixes keycloak#24586 Signed-off-by: Hynek Mlnarik <hmlnarik@redhat.com>
Before reporting an issue
Area
admin/ui
Describe the bug
Users in the master realm who have view-authorization role of a sub realm can't see the "Authorization" tab of the clients (that has authorization enabled) of that sub realm.
Version
22.0.3
Expected behavior
Users in the master realm who have view-authorization role of a sub realm should be able to see the "Authorization" tab of the clients (that have authorization enabled) of that sub realm.
Actual behavior
Users in the master realm who have view-authorization role of a sub realm can't see the "Authorization" tab of the clients (that has authorization enabled) of that sub realm.
How to Reproduce?
You won't be able to see the "Authorization" tab even tho that you have the role view-authorization of that sub realm:
Anything else?
If I assign the sub realm manage-authorization role to that user, the "Authorization" tab shows up, but of course, the user will have write access to the Authorizations tab, which is not a desirable solution for read-only users.
The text was updated successfully, but these errors were encountered: