Uploaded image for project: 'OpenIDM'
  1. OpenIDM
  2. OPENIDM-14351

Delegated Admin - Updating Internal Role returns null fields for DB2 repo


    • Target Version/s:
    • Verified Version/s:
    • Story Points:
    • Sprint:
      2020.02 - IDM


      Please note that this is still under investigation as I am unable to find specific reason why this is happening
      After updating Internal Role with PATCH we are experiencing incorrect field of updated Internal Role (null values as you can see below)

      Update: This was cause by this commit https://stash.forgerock.org/projects/OPENIDM/repos/openidm/commits/23896f0354c2564eccbc6586004b00a1386bfb51


      Failed tests start to appear between 6.1 - 16.1 (possibly related to the recent changes for DB2 ?)

      • OpenIDM.Delegated Admin.Privileges.admin_can_create_a_role_with_a_VIEW_only_privilege_with_read_only_access_flags_and_user_cannot_delete_it
        After this PATCH request
        curl -H "X-OpenIDM-Username: openidm-admin" -H "X-OpenIDM-Password: openidm-admin" -H "Content-Type: application/json" -X  PATCH --data-binary [{"operation": "add", "field": "/authzRoles/-", "value": {"_ref": "internal/role/user-admin-1-id"}}] http://localhost.localdomain:8080/openidm/managed/user/juserDA?_fields=*,authzRoles

        The respond is 200 with this body :

            "_id": "juserDA",
            "": null,
            "authzRoles": [
                    "_ref": "internal/role/openidm-authorized",
                    "_refResourceCollection": "internal/role",
                    "_refResourceId": "openidm-authorized",
                    "_refProperties": {
                        "_id": "53f70ce6-3808-474e-8570-c29218ff0377",
                        "_rev": "0"
                    "_ref": "internal/role/user-admin-1-id",
                    "_refResourceCollection": "internal/role",
                    "_refResourceId": "user-admin-1-id",
                    "_refProperties": {
                        "_id": "330ae6c5-97ee-4941-aadf-bc2fc2ebe9ba",
                        "_rev": "0"
      • OpenIDM.Delegated Admin.Relationship Operations With Da.Operations Through Origin Vertex.DA_with_filter_that_allows_it_can_update_user_with_ifMatch_header**
        After PUT update of managed/user with IfMatch header (PUT /openidm/managed/user/psmith), the respond is 200 with this body:
            "_id": "psmith"
      • OpenIDM.Delegated Admin.Roles.create_new_role_with_conditions
        For this request I found out that for some unknown reason the first PATCH request (to update previously created Internal Role) respond without rev field and other fields (description, name etc) gall null as value. The immediate second request (exactly the same) will respond correctly
        After this PATCH request:
        curl -H "X-OpenIDM-Username: openidm-admin" -H "X-OpenIDM-Password: openidm-admin" -H "Content-Type: application/json" -X  PATCH --data-binary '[{"operation": "replace", "field": "/condition", "value": "/userName eq \"fuser\""}]' http://localhost.localdomain:8080/openidm/internal/role/c8520b18-0812-436e-bec8-a2608af29374

        The respond is 200 with this body:

            "_id": "c8520b18-0812-436e-bec8-a2608af29374",
            "name": null,
            "description": null,
            "temporalConstraints": null,
            "condition": null,
            "privileges": null




            • Assignee:
              jason.vincent jason vincent
              alexander.dracka Alexander Dracka
              QA Assignee:
              Alexander Dracka
            • Votes:
              0 Vote for this issue
              1 Start watching this issue


              • Created: