-
Bug
-
Resolution: Fixed
-
High
-
None
-
3
-
Severity 2 - Major
-
Issue Summary
Changing emails to another domain through REST API results in error related to SSO / SAML
This is caused by the enforcement of SSO in the Authentication policies.
This is reproducible on Data Center: no
Steps to Reproduce
- Claim 2 domains in the Organization
- Enforce SSO in a particular user through Auth policies
- Try to change the email of this user using the public API
Expected Results
Should change the user's email.
Actual Results
Results in the following error:
{"key":"forbidden.action","context":{"allowed":false,"reason":{"key":"authPolicy.saml"}},"errorKey":"forbidden.action","errorDetail":{"allowed":false,"reason":{"key":"authPolicy.saml"}}}
Workaround
The workaround is to change authentication policies momentarily and disable SSO enforcement.
[ID-8332] Changing emails to another domain through REST API results in error related to SSO / SAML
| Remote Link | New: This issue links to "Page (Confluence)" [ 814242 ] |
| Resolution | New: Fixed [ 1 ] | |
| Status | Original: Waiting for Release [ 12075 ] | New: Closed [ 6 ] |
| Status | Original: In Review [ 10051 ] | New: Waiting for Release [ 12075 ] |
| Status | Original: In Progress [ 3 ] | New: In Review [ 10051 ] |
| Remote Link | New: This issue links to "METRO-945 (Hello Jira)" [ 810177 ] |
| Status | Original: Needs Triage [ 10030 ] | New: In Progress [ 3 ] |
| Assignee | New: Joel Ryden [ jryden ] |
| Resolution | Original: Fixed [ 1 ] | |
| Status | Original: Closed [ 6 ] | New: Needs Triage [ 10030 ] |
| Resolution | New: Fixed [ 1 ] | |
| Status | Original: Needs Triage [ 10030 ] | New: Closed [ 6 ] |