Uploaded image for project: 'OpenAM'
  1. OpenAM
  2. OPENAM-12970

Delegated admin can't delete agents

    XMLWordPrintable

    Details

    • Rank:
      1|hzvtv3:

      Description

      Bug description

      Delegated admin can't delete agents using rest endpoint /openam/frrest/oauth2/client/<client name>. OpenAM/AM returns 403 Forbidden User is not an administrator. 

      How to reproduce the issue

      1. Create Subject and add to group with privilege "Read and write access to all realm and policy properties" enabled.
      2. Create an OAuth2/OIDC agent 
      3. Authenticate using Subject created in Step 1
      4. Use DELETE request documented here using the tokenId created in Step 4
      Expected behaviour
      Agent deleted
      Current behaviour
      403 Forbidden User is not an administrator
      
      Workaround
      Use amadmin for this task
      

        Attachments

          Issue Links

            Activity

              People

              Unassigned Unassigned
              aaron.haskins Aaron Haskins
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

                Dates

                Created:
                Updated:
                Resolved: