Closed grinay closed 1 year ago
@grinay We're aware of that case. There are two "service account" types that can be returned by that method:
org-admin-{orgId}
). We have users that want the organization service account to be returned for some use cases. I think the ideal "fix" here, without breaking backwards compatibility is tho have a query param like sa=false
that defaults to true, that causes the method to return all users without service accounts.FYI, we're doing both parts of 2. The Client service account will be removed from the response, and not added to the organization in the first place.
@xgp thank you guys, for fast response. Nice job
Hi guys. @xgp I found a bug with API. Using this endpoint /realms/{realm}/orgs/{orgId}/members returns not only organization users, but also returns service-account-admin-cli user. Which eventually lead us to broken authentication for backend, as we are remove all users from organization on request;). May you check that case ?