Details
-
Type: extRequest
-
Status: Closed
-
Priority: Major
-
Resolution: Dismissed
-
Fix Version/s: None
-
Component/s: FIWARE-TECH-HELP
-
Labels:None
Description
Hi (again)
In testing, I accidentally managed to disable my admin rights when logged in as the only admin in the system in the Keyrock IDM interface.
All I had to do was:
1 In the application, click on Authorize
2 Click on the role list next to the admin user and deselect Purchase and Provider
3 Save
I had to recover by manually adding the relevant back into the role_assignment table:
MariaDB [idm]> insert into role_assignment (oauth_client_id, role_id, user_id) values ("[from user_authorized_application]", "provider", "admin");
(this was not strictly necessary)
MariaDB [idm]> insert into role_assignment (oauth_client_id, role_id, user_id) values ("[from user_authorized_application]", "purchaser", "admin");
I don't feel it should so easy to do this. Please could this be handled somehow so it isn't possible to disable yourself as an admin when logged in as the only admin in the system and/or have the usual annoying (but useful here) "Are you really really sure you want to do this?" notification.
Thanks!
Taz
Chalmers University of Technology
__________________________________________________________________________________________
You can get more information about our cookies and privacy policies on the following links:
fiware-tech-help mailing list
fiware-tech-help@lists.fiware.org
To unsubscribe from fiware-tech-help mailing list, go to the information page of the list at:
https://lists.fiware.org/listinfo/fiware-tech-help
[Created via e-mail received from: Taz Lodder <taz@chalmers.se>]
Activity
- All
- Comments
- History
- Activity
- Transitions