Hi dear community,
I've built a Live Application that is called "Set your password".
This live application just has two input fields and one button.
The button sends the request to the Bonita API via put.
The payload is generated via Javascript:
var payload = { "password": $data.newPass, "password_confirm": $data.newPassRepeat };
The API is called via:
../API/identity/user/{{ userId.user_id }}
If I use this as an administrator, it works, as a user I get a 403 forbidden error. Why?