403 with API identity

Laurent_Leseigneur · 3 May 2021 15:21

Hi,

when i try to get all users with a specific membership with on a tomcat bundle:

../API/identity/user?p=0&c=10&f=enabled=true&f=role_id=3&f=group_id=20

I get a 403 with a normal user (ok with an admin), but it works in studio (default config)

why don't we have the same behaviour ?
no info is provided in documentation about restrictions https://documentation.bonitasoft.com/bonita/2021.1/identity-api#_read_a_user_details

thanks,

L.

romain.bioteau · 4 May 2021 06:53

Hi,
In the default Studio organization all users have the admin profile.

HTH
Romain

Laurent_Leseigneur · 4 May 2021 07:15

even for user created on the fly during a process execution ?

this API is not supposed to belong to an admin to get users of a membership

romain.bioteau · 4 May 2021 07:17

Are the dynamic permissions check enable in your test environment ? They are not in the Studio and are less permissive.

Laurent_Leseigneur · 4 May 2021 07:23

I don’t think so, it’s a OOB docker container build by BCD add on

romain.bioteau · 5 May 2021 07:05

Topic		Replies	Views
Unable to see bonita form if non admin user - Docker error 403 Q&A	6	2	15 November 2021
[Bonita 7] REST API Extensions always responds with HTTP 403 Q&A	12	20	29 October 2015
REST API Extension error 403 running on Docker Q&A extensions	0	8	3 May 2023
/living/application gives 403 forbidden Q&A	0	2	30 May 2017
Rest API authentication configuration - how to allow user/group to execute endpoint Q&A	1	1	18 July 2019