Closed amanda-ariyaratne closed 8 months ago
Addition to the above issue, I noticed Access Denied for the console SSO without any newly introduced roles. Lets check whether this fix resolves both of the issues.
Verified kind of a flow where the user has only console administrator role at organization level.
https://github.com/wso2/product-is/assets/35717390/f28954e7-a9f3-4e76-a8f5-2977c137b2c2
Peer reviewed
Tested in org.wso2.carbon.identity.application.authentication.framework_5.26.20 on top of the patch bd889d9a9d42088fe1cd2c05fccdce8e09fd7e72 in IS 7 snapshot version.
Scenario 1 "Access Denied" for Console SSO for a sub-org admin without introducing a new application role and working as expected. https://github.com/wso2/product-is/assets/4128062/b6b82b2d-83db-4ada-9d25-a6f282423642
Scenario 2 "Exception" for Console SSO for a sub-org admin with a new application role and working as expected.
https://github.com/wso2/product-is/assets/4128062/e8c7d8f1-3a85-4cc5-b0da-1fe4c09bbfa2
Describe the issue:
Attempted to SSO from the sample application to console application as a suborganization admin. The UI hangs when loading the console and the following stack trace is printed in the IS terminal. The root cause could be because the two applications have separate application roles and when moving from the first app to the second one, the second app tries to retrieve roles of the first app. However, when the page of the second app is refreshed, the application loads.
https://github.com/wso2/product-is/assets/28347418/01d9e322-5432-4550-8b06-762ce5e773e2
How to reproduce:
Expected behavior:
Environment information (Please complete the following information; remove any unnecessary fields) :
Optional Fields
Related issues:
Suggested labels: