All work
- Missing module permissions on /inn-reach/d2ir/circ endpointMODINREACH-496
- Could not open JPA EntityManager for transaction - use @DirtiesContextMODINREACH-495Resolved issue: MODINREACH-495Julian Ladisch
- Release mod-inn-reach v3.3.3 (Ramsons CSP #2)MODINREACH-491Resolved issue: MODINREACH-491Kapil Verma1
- Local server: Enforce UUID of key, explain UUID of secretMODINREACH-490Resolved issue: MODINREACH-490Julian Ladisch
- Bump Spring Boot from 3.3.5 to 3.3.10 (Ramsons)MODINREACH-489Resolved issue: MODINREACH-489
- Bump Spring Boot from 3.4.3 to 3.4.4 (Sunflower)MODINREACH-488Resolved issue: MODINREACH-488
- 500 Error Returned for INN-Reach Paging SlipsMODINREACH-487Resolved issue: MODINREACH-487Kapil Verma1
- When a D2IR Item Hold transaction is cancelled automatically due to FOLIO request policy (circ rules), re-contribute/update requested itemMODINREACH-485Pavel Filippov
- Release: Sunflower - mod-inn-reachMODINREACH-483Resolved issue: MODINREACH-483Kapil Verma1
- FOLIO INN-Reach PATRON_Hold IssueMODINREACH-482Tim Auger
- Incorrect field in INN-Reach module's "In Transit Too Long"MODINREACH-481Gurleen Kaur1
- FOLIO's INN-Reach transaction statuses do not always update correctlyMODINREACH-480Gurleen Kaur1
- Release MODINREACH-476 and MODINREACH-468 for RMODINREACH-479Resolved issue: MODINREACH-479Gurleen Kaur1
- Release MODINREACH-476 to QMODINREACH-478Resolved issue: MODINREACH-478Gurleen Kaur1
- INN-Reach Login Issue (Users with more than one space in their first or last name and/or a middle name can't log in)MODINREACH-477Kapil Verma1
- Initial contribution job can time out for larger collectionsMODINREACH-476Resolved issue: MODINREACH-476Gurleen Kaur1
- Sensitive data in logs cleanupMODINREACH-475
- Create Application Descriptor RepositoryMODINREACH-474Resolved issue: MODINREACH-474Kapil Verma1
- Release fix for MODINREACH-469MODINREACH-473Resolved issue: MODINREACH-473Gurleen Kaur1
- Release for GVSU for MODINREACH-468MODINREACH-472Resolved issue: MODINREACH-472Gurleen Kaur1
- Setup central server connection with Volaris Rancher 1 and Eureka Rancher 2MODINREACH-471Resolved issue: MODINREACH-471Gurleen Kaur1
- INN-reach unable to cancel holdsMODINREACH-470Resolved issue: MODINREACH-470Sarika Sahu
- INN-Reach issue: MeLCat shows GVSU's "aged to lost" items as availableMODINREACH-469Resolved issue: MODINREACH-469Gurleen Kaur1
- INN-reach error receiving unshipped itemMODINREACH-468Resolved issue: MODINREACH-468Gurleen Kaur1
- Release R BugfixMODINREACH-466Resolved issue: MODINREACH-466Vignesh Kalyanasundaram
- [EUREKA] Rename automated patron blocks permissionMODINREACH-465Resolved issue: MODINREACH-465Roman Barannyk
- Owning Site Overdue Report not workingMODINREACH-467Resolved issue: MODINREACH-467Sarika Sahu
- mod-inn-reach-3.4.0-SNAPSHOT.382 build breaks Sprint Testing environment updateMODINREACH-464Resolved issue: MODINREACH-464
- Release Ramsons BugfixMODINREACH-463Resolved issue: MODINREACH-463Vignesh Kalyanasundaram
- Setup Central server configuration for Inn reach in rancher1MODINREACH-462Resolved issue: MODINREACH-462Vignesh Kalyanasundaram
- INN-Reach Login Issue (Users with a space in their first or last name can't log in)MODINREACH-461Resolved issue: MODINREACH-461Tetiana Gusar
- Replace pom.xml sonar.exclusions with @SuppressWarningsMODINREACH-460
- Release: Ramsons - mod-inn-reachMODINREACH-458Resolved issue: MODINREACH-458Vignesh Kalyanasundaram
- mod-inn-reach constantly crashes on the Eureka platformMODINREACH-457Resolved issue: MODINREACH-457Vignesh Kalyanasundaram
- Update all pom.xml dependencies for RamsonsMODINREACH-456Resolved issue: MODINREACH-456Vignesh Kalyanasundaram
- Update Spring support version for RamsonsMODINREACH-455Resolved issue: MODINREACH-455Vignesh Kalyanasundaram
- inventory API version updateMODINREACH-454Resolved issue: MODINREACH-454Gurleen Kaur1
- Rename source-storage.records.get module permissionMODINREACH-453Resolved issue: MODINREACH-453Dmytro Krutii
- Update permissions in the ModuleDescriptorMODINREACH-450Resolved issue: MODINREACH-450
- API version updateMODINREACH-449Resolved issue: MODINREACH-449Gurleen Kaur1
- Review and cleanup Module Descriptors for mod-inn-reachMODINREACH-447Resolved issue: MODINREACH-447Gurleen Kaur1
- SYSTEM_USER env var is not taking affectMODINREACH-446Resolved issue: MODINREACH-446Vignesh Kalyanasundaram
- Release for Q for outbox implementation ongoing contributionMODINREACH-445Resolved issue: MODINREACH-445Vignesh Kalyanasundaram
- Test ongoing contributionMODINREACH-444Resolved issue: MODINREACH-444Irina Pokhylets
- The custom field type is not catering for a list value in inn-reach code.MODINREACH-443Resolved issue: MODINREACH-443Sreeja Mangarapu
- Poppy release for inn-reachMODINREACH-442Resolved issue: MODINREACH-442Vignesh Kalyanasundaram
- Item move and retry is not working in Ongoing contributionMODINREACH-441Resolved issue: MODINREACH-441Vignesh Kalyanasundaram
- Move holdings from one instance to other instance is not working properly in INN-ReachMODINREACH-440
- Test ongoing contribution on PoppyMODINREACH-439Resolved issue: MODINREACH-439Vignesh Kalyanasundaram
- Upgrade patron interface versionMODINREACH-438Resolved issue: MODINREACH-438Vignesh Kalyanasundaram
50 of 449
Missing module permissions on /inn-reach/d2ir/circ endpoint
Description
CSP Request Details
None
CSP Rejection Details
None
Potential Workaround
Add the inventory-storage.holdings-sources.collection.get permission to the institutional user.
relates to
Checklist
hideCreated 3 days ago
Updated 2 days ago
Activity
Show:
Irina Pokhylets
updated the Release2 days agoNone
Trillium (R2 2025)
Irina Pokhylets
made 4 changes2 days ago
Link
None
This issue relates to UXPROD-5274
Priority
TBD
P3Labels
inn-reach
back-end inn-reach
Wayne Schneider
updated the description3 days agoA user that has only the {{inn-reach.all}} permission set (as documented for the institutional user for edge-inn-reach) cannot create an INN-Reach borrowing request for materials from another institution. The temporary item cannot be created in FOLIO and the module logs the error:
{noformat}2025-04-14T20:44:35.538186957Z stdout F 20:44:35 [] [] [] [] ERROR syncExceptionHandler Async method [public void org.folio.innreach.domain.service.impl.PatronHoldServiceImpl.createVirtualItems(org.folio.innreach.domain.entity.InnReachTransaction)] throw exception
2025-04-14T20:44:35.53831357Z stdout F feign.FeignException$Forbidden: [403 Forbidden] during [GET] to [http://holdings-sources?query=name==FOLIO&limit=1] [HoldingSourcesClient#querySourceByName(String)]: [Access for user 'innreachClient' (8c1608b5-817c-4554-b078-0a659a4e7290) requires permission: inventory-storage.holdings-sources.collection.get]{noformat}
Adding the required permission allows the item to be created and the request to be placed for processing when it is received.
I believe that the endpoint {{/inn-reach/d2ir/circ/{circulationOperationName}/{trackingId}/{centralCode}}} needs to have the permission {{inventory-storage.holdings-sources.collection.get}} added to the {{modulePermissions}} property in the module descriptor.
This was observed with mod-inn-reach v3.2.5 (Quesnelia) but seems likely to be also true for later versions as the modulePermissions for that endpoint have not changed.
Wayne Schneider
created the Work item3 days ago
A user that has only the
inn-reach.allpermission set (as documented for the institutional user for edge-inn-reach) cannot create an INN-Reach borrowing request for materials from another institution. The temporary item cannot be created in FOLIO and the module logs the error:2025-04-14T20:44:35.538186957Z stdout F 20:44:35 [] [] [] [] ERROR syncExceptionHandler Async method [public void org.folio.innreach.domain.service.impl.PatronHoldServiceImpl.createVirtualItems(org.folio.innreach.domain.entity.InnReachTransaction)] throw exception 2025-04-14T20:44:35.53831357Z stdout F feign.FeignException$Forbidden: [403 Forbidden] during [GET] to [http://holdings-sources?query=name==FOLIO&limit=1] [HoldingSourcesClient#querySourceByName(String)]: [Access for user 'innreachClient' (8c1608b5-817c-4554-b078-0a659a4e7290) requires permission: inventory-storage.holdings-sources.collection.get]Adding the required permission allows the item to be created and the request to be placed for processing when it is received.
I believe that the endpoint
/inn-reach/d2ir/circ/{circulationOperationName}/{trackingId}/{centralCode}needs to have the permissioninventory-storage.holdings-sources.collection.getadded to themodulePermissionsproperty in the module descriptor.This was observed with mod-inn-reach v3.2.5 (Quesnelia) but seems likely to be also true for later versions as the modulePermissions for that endpoint have not changed.