Affects Version/s: 13.0.0, 13.5.0
Environment:Both OpenAM 13.0.0 and 13.5.0
A delegated admin at the top realm with full privilege assigned cannot view or perform any realms REST API and gets Forbidden.
- This issues exists in 13.0.0 and 13.5.0.
- amadmin works without problem
Realm admin (or full delegated admin) should be able to do the JSON REST json/realms API.
This look similar to
OPENAM-8884 but the issue is in RealmResource which calls hasPermission() that requires superadmin privilege. It
was mentioned that RealmResource is deprecate and SmsRealmProvider
is the replacement.