search

simpleidserver / SimpleIdServer

OpenID, OAuth 2.0, SCIM2.0, UMA2.0, FAPI, CIBA & OPENBANKING Framework for ASP.NET Core
https://simpleidserver.com/
Apache License 2.0
683 stars 90 forks source link

ApiKey was forbidden on SCIM patch #701

Closed Thijmen closed 4 months ago

Thijmen commented 4 months ago

Dear maintainer,

I'm getting a 403 error on PATCH for User scheme. In my logs I can see:

AuthenticationScheme: ApiKey was forbidden.

It does a PATCH to PATCH /Users/dc769a8c-beb9-435b-b264-2824ed7f947b to replace the userName. Provisioning works well, but I can't figure out why it has no correct scope.

These scopes are being used;

   "query_scim_resource",
          "add_scim_resource",
          "delete_scim_resource",
          "update_scim_resource",
          "bulk_scim_resource",
          "scim_provision"

Using version 3.0.-

Any help would be greatly appreciated.

Best regards,

Thijmen

Thijmen commented 4 months ago

Nevermind, the error sat between the chair and the desk; I did not provide the proper ApiKey configuration.