Setting REST Permissions

gsbabcock1 · 30 June 2017 14:49

I am getting a 403 error (forbidden) when a user with “User” profile try to attach a file to a case.

I have tried unsuccessfully to resolve this error by:

Adding profile|User=[document_management] to the custom-permissions-mapping.properties file
Setting security.rest.api.authorizations.check.enabled to false in the security-config.properties file

Any help would be appreciated.

Thanks,

Greg Babcock

Dibyajit.Roy · 13 July 2017 05:18

Is the User part of the Group to which the task is Assigned ?
usually the Actor group mapped for a lane or Task will have correct permission to make sufficient changes.
Other users who are not part of the group could see the task but cannot make changes there.

Topic		Replies	Views
REST API 6.5.3 Q&A	1	0	8 July 2016
Can't change REST API authorization Q&A	8	0	25 July 2018
How can we check user permissions ? Q&A	2	5	7 March 2017
Unable to Have correct Dynamic Security Check "check\|org.bonitasoft.permissions.ProcessInstantiationPermissionRule" Q&A	2	2	15 September 2020
Rest API authentication configuration - how to allow user/group to execute endpoint Q&A	1	1	18 July 2019

Setting REST Permissions

Related topics