Deployed application with authentication scopes, Not opening

[LalithManokar]

Description

I have provided the scope for accessing the application in xs-security.json and xs-app.json file i have provided the role templates to the user as well, but still app is showing forbidden.

Environment

• Plugin version (e.g. 1.3.0) - 1.4.3
• OS (macOS/Windows) - Bizapp
• SAP CF Landscape (e.g. Canary) - Canary
• IaaS provider (e.g. AWS) - AWS
• Region (e.g. eu10) - EU2

Steps: https://github.wdf.sap.corp/refapps/cloud-extension-html5-sample clone and build and deploy add the role template to the users and run the app.

Regards, Lalith. S

[micellius]

@lalithmanokar , thanks for reporting an issue.

Looks like you are using MTA build and deployment, which is not relevant to the html5-plugin CLI. In case I'm missing something, please specify which html5-plugin command you used and with which parameters.

Anyway, if after deployment you are able to see the new roles in the Cockpit (which I assume is the case, since you state that you was able to assign roles to users), the deployment passed fine and all relevant design-time configuration is applied. In order run-time configuration (presence of relevant scopes from role-template in JWT of the logged-in user) to be applied, you should log-out and log-in again or use incognito mode of the browser. In case of incognito, make sure to close all incognito browser instances before opening new one (otherwise you will connect to existing session, which has an outdated JWT).