Steps to Reproduce:

1. Login to https://eureka-bugfest-ramsons-consortium.int.aws.folio.org/ tenant as a user with following capability sets assigned

   1. Central tenant:

      1. Data - UI-Users - View

      2. Data - UI-Users - Delete

      3. Data - UI-Users Open Transactions - View

2. Go to "Users" app

3. Open detailed view of any existing user

4. Click on "Actions" button on the third pane → Select "Check for open transactions/delete user" option

5. Click on “Yes“ button in appeared modal

Expected Results: A user is deleted without errors. Modal is closed, deleted user’s detailed view is closed, deleted user disappeared from users list.

Actual Results: A user is NOT deleted. Modal remains opened. Error pop-up appears. In DevTools DELETE /users-keycloak/users/<<UUID>> call fails with 403 status and the following response body:

Additional Information:

• Reproducible regardless of whether a user has a Keycloak record or not

• Also active on:

  • https://folio-etesting-snapshot-diku.ci.folio.org/

  • https://folio-etesting-snapshot-consortium.ci.folio.org/

  • https://eureka-bugfest-ramsons.int.aws.folio.org/

• NOT active on https://bugfest-ramsons-consortium.int.aws.folio.org/ for a user with corresponding permissions:

  • Users: Can check open transactions

  • Users: Can delete user profile if user does not have any open transactions

  • Users: Can view user profile

• See example: