The admin-scope short circuits the AuthorizeServiceResources check, such that the calling system can create dialogs for any service resource. This is meant for othter internal writing Altinn integrations, such as correspondence and the Altinn Storage.
The Org population is however always performed based on the authenticated user, which causes "Digitaliseringsdirektoratet" to be the sender for all correspondence.
Reproduction
Authenticate as Digdir, using the scope digdir:dialogporten.serviceprovider.admin
Create a dialog referring a service resource owned by SKE
Authenticate as an enduser with access to that dialog
Fetch the dialog
Expected behavior
The dialog should have the "Org" field set to "ske"
Actual behavior
The dialog has the "Org" field set to "digdir"
Additional information
If there is additional context that is relevant to include.
Description
The admin-scope short circuits the
AuthorizeServiceResourcescheck, such that the calling system can create dialogs for any service resource. This is meant for othter internal writing Altinn integrations, such as correspondence and the Altinn Storage.The
Orgpopulation is however always performed based on the authenticated user, which causes "Digitaliseringsdirektoratet" to be the sender for all correspondence.Reproduction
digdir:dialogporten.serviceprovider.adminExpected behavior
The dialog should have the "Org" field set to "ske"
Actual behavior
The dialog has the "Org" field set to "digdir"
Additional information
If there is additional context that is relevant to include.