Skip to:

Skip to Jira Navigation
Skip to Side Navigation
Skip to Main Content

modulePermissions not read correctly

Description

When checking that permissions can be added for user (operating user), mod-permissions checks X-Okapi-Permissions header in the assumption this has all modulePermissions for the request.

It does not include them.. only the permission for the call itself. Fix this by looking at the
token instead which includes JSON payload property extra_permissions that includes all modulePermissions.

This can also be viewed as an Okapi error, although changing behavior should be done with care. So for now, changing mod-permissions to use existing infrastructure.

CSP Request Details

None

CSP Rejection Details

None

Potential Workaround

None

Attachments

1

Linked issues

relates to

Check assignment permissions for operating user

permission assign: lax operating user check

Improve diagnostics for operating check

Cannot add mutable permission admins.lol-speak (mod-permissions karate test)

Listening port configuration?

Add OkapiToken.getPayloadWithoutValidation

Module endpoint permission granting isn't working properly.

Checklist

hide

TestRail: Results

Activity

Show:

Adam DickmeissDecember 30, 2021 at 10:27 AM

Reopening as this does not appear to work with Karate tests still with mod-search.

Done

Details
Assignee
Adam Dickmeiss
Reporter
Adam Dickmeiss
Priority
TBD
Story Points
2
Sprint
None
Development Team
Core: Platform
Fix versions
6.0.0
TestRail: Cases
Open TestRail: Cases
TestRail: Runs
Open TestRail: Runs

Created December 29, 2021 at 4:17 PM

Updated January 3, 2022 at 1:51 PM

Resolved January 3, 2022 at 12:01 PM

TestRail: Cases

TestRail: Runs