[CWD-5741] REST API authentication fails

Type: Bug
Resolution: Not a bug
Priority: Low
Fix Version/s: None
Affects Version/s: 4.3.0
Component/s: REST
Labels:
None

Support reference count:
1
Symptom Severity:
Severity 3 - Minor
Bug Fix Policy:
View Atlassian Server bug fix policy

Issue Summary

When using command line, REST API endpoints may fail with an "Application failed to authenticate" error.

Steps to Reproduce

The following REST API calls (at least) fail to be executed:

fkraemer@C02ZX4MTMD6N ~ % curl -u fkraemer -X GET "http://localhost:8095/crowd/rest/usermanagement/1/user/attribute?username=crowd1"
Enter host password for user 'fkraemer':
Application failed to authenticate
fkraemer@C02ZX4MTMD6N ~ % curl -u fkraemer -X PUT -d '{"value":"newpwd"}' "http://localhost:8095/crowd/rest/usermanagement/1/user/password?username=crowd1"
Enter host password for user 'fkraemer':
Application failed to authenticate
fkraemer@C02ZX4MTMD6N ~ %

Notes:

Authentication of fkraemer works directly in the browser.
The base URL http://localhost:8095/crowd is correct.
The user fkraemer is a local Crowd administrator.
The user crowd1 is a local Crowd regular user.

Expected Results

Authentication works and the REST API call is executed successfully.

Actual Results

Authentication fails and the REST API call is not executed.

Workaround

Currently there is no known workaround for this behavior. A workaround will be added here when available.

Mina Trevizo added a comment - 05/Oct/2021 4:26 PM - edited

Thanks Pawel,

Will talk with our Crowd SME

Mina Trevizo added a comment - 05/Oct/2021 4:26 PM - edited Thanks Pawel, Will talk with our Crowd SME

Pawel Gruszczynski (Inactive) added a comment - 05/Oct/2021 4:02 PM - edited

These have to be credentials of the application that is defined in Crowd

https://confluence.atlassian.com/crowd/adding-an-application-18579591.html

The application can access user's data if the user belongs to one of the application directories.

Pawel Gruszczynski (Inactive) added a comment - 05/Oct/2021 4:02 PM - edited These have to be credentials of the application that is defined in Crowd https://confluence.atlassian.com/crowd/adding-an-application-18579591.html The application can access user's data if the user belongs to one of the application directories.

Mina Trevizo added a comment - 05/Oct/2021 3:46 PM

I've tried using my Bitbucket credentials and then tried my personal access token for Bitbucket as well and still have been getting 'Application failed to authenticate' error.

Mina Trevizo added a comment - 05/Oct/2021 3:46 PM I've tried using my Bitbucket credentials and then tried my personal access token for Bitbucket as well and still have been getting 'Application failed to authenticate' error.

Mina Trevizo added a comment - 05/Oct/2021 3:45 PM

Hi Pawel,
Thanks for getting to this. Which applications credentials should we be using in this case?
We are trying to retrieve users that can be found in crowd but the involved applications would be Bitbucket

Mina Trevizo added a comment - 05/Oct/2021 3:45 PM Hi Pawel, Thanks for getting to this. Which applications credentials should we be using in this case? We are trying to retrieve users that can be found in crowd but the involved applications would be Bitbucket

Pawel Gruszczynski (Inactive) added a comment - 05/Oct/2021 10:56 AM

Please note that you're using an endpoint dedicated for applications and should authenticate with application credentials, not user credentials.
https://jira.atlassian.com/secure/AddComment!default.jspa?id=1816293

Pawel Gruszczynski (Inactive) added a comment - 05/Oct/2021 10:56 AM Please note that you're using an endpoint dedicated for applications and should authenticate with application credentials, not user credentials. https://jira.atlassian.com/secure/AddComment!default.jspa?id=1816293

Assignee:: Unassigned

Reporter:: Felipe Kraemer

Affected customers:: 1 This affects my team

Watchers:: 4 Start watching this issue

Created:: 04/Oct/2021 6:42 PM

Updated:: 05/Oct/2021 4:26 PM

Resolved:: 05/Oct/2021 10:56 AM

Details

Description

Issue Summary

Steps to Reproduce

Expected Results

Actual Results

Workaround

Attachments

Forms

Activity

Collapse comment: Mina Trevizo added a comment - 05/Oct/2021 4:26 PM, Edited by Mina Trevizo - 05/Oct/2021 4:26 PM

Expand comment: Mina Trevizo added a comment - 05/Oct/2021 4:26 PM, Edited by Mina Trevizo - 05/Oct/2021 4:26 PM

Collapse comment: Pawel Gruszczynski (Inactive) added a comment - 05/Oct/2021 4:02 PM, Edited by Pawel Gruszczynski - 05/Oct/2021 4:12 PM

Expand comment: Pawel Gruszczynski (Inactive) added a comment - 05/Oct/2021 4:02 PM, Edited by Pawel Gruszczynski - 05/Oct/2021 4:12 PM

Collapse comment: Mina Trevizo added a comment - 05/Oct/2021 3:46 PM

Expand comment: Mina Trevizo added a comment - 05/Oct/2021 3:46 PM

Collapse comment: Mina Trevizo added a comment - 05/Oct/2021 3:45 PM

Expand comment: Mina Trevizo added a comment - 05/Oct/2021 3:45 PM

Collapse comment: Pawel Gruszczynski (Inactive) added a comment - 05/Oct/2021 10:56 AM

Expand comment: Pawel Gruszczynski (Inactive) added a comment - 05/Oct/2021 10:56 AM

People

Dates