Loading...

XML

Word

Printable

Details

Type: Bug
Resolution: Fixed
Priority: Medium
Fix Version/s: 10.79
Affects Version/s: 10.70, 10.71, 10.72, 10.73
Component/s: REST API
Labels:
- Batman!
- ja-api-v2

Support reference count:
1
Symptom Severity:
Severity 3 - Minor
Sprint:
Batman! - TART5

Description

Issue Summary

Deactivating a user via PATCH call towards /align/api/2/Users/id endpoint produces the following inconsistent results.

Missing audit logs
Discrepant locked value
Discrepant status value
Discrepant action button

Steps to Reproduce

Obtain a valid token
The corresponding user must be either Super Admin or has enough privileges in the UI to perform user deactivation
Make a GET call towards /align/api/2/Users/id endpoint, for validating the token
Make a PATCH call towards /align/api/2/Users/id endpoint, using the document below
Use the following JSON patch document (as per https://json-patch-builder-online.github.io/):
```
[
    {
        "op": "replace",
        "path": "/locked",
        "value": -1
    }
]
```
Make a GET call towards /align/api/2/Users/id endpoint, for validating results

Expected Results

In PATCH call, the "value" parameter should equals to "-1" for deactivating a user, instead of "1" (in accordance to when the user is deactivated via UI)
In UI, "action" button should be labeled "Activate", rather than "Deactivate"
The "userEndDate" parameter should be filled adequately, rather than "NULL"
Corresponding Audit Log entry is missing for activate/deactivate operations performed via API – as apposed to when the same actions are performed in the UI

Actual Results

Visual Differences

Deactivated via UI	Deactivated via API

Padlock closed	Padlock closed
Match filter `Deactivated = Yes`	Match filter `Deactivated = Yes`
Match `Status = Inactive`	Match `Status = Inactive`
Action button `Activate`	Action button `Deactivate`

JSON Differences ¹

Deactivated via UI		Deactivated via API
"userEndDate": "2020-06-03T00:00:00Z",	OK	"userEndDate": null,	Null
"locked": -1,	OK	"locked": 1,	Inconsistent with UI results and with source code style
"status": "Active",	Should be `Inactive`	"status": "Inactive",	OK

Audit Log

Operation	UI	API
Activation
Deactivation

Caption:

Expected/Present Unexpected/Absent

NOTES

Just relevant objects are shown

Workaround

For deactivating a user via API 2.0
- Use "value": 1 instead of "value": -1 when making the PATCH call
For the other remaining symptoms:
- Currently there is no known workaround for this behavior. A workaround will be added here when available.

Attachments

- Sort By Name
- Sort By Date
- Ascending
- Descending
- Thumbnails
- List

locked-via-API.png
10/Jun/2020 2:51 AM
81 kB
Rodrigo Cortez
locked-via-UI.png
10/Jun/2020 2:51 AM
80 kB
Rodrigo Cortez

Issue Links

is related to

JIRAALIGN-4742 API - Reactivating a user that was deactivated a long time ago produces error 400 - UserEndDate cannot be set before 1 days in past.

Closed

mentioned in: Page Loading...; Page Loading...; Page Loading...

resolves: ALIGNSP-3774 Loading...

Wiki Page: Wiki Page Loading...

(1 Wiki Page)

Activity

People

Assignee:: Kyle Foreman

Reporter:: Rodrigo Cortez

Votes:: 0 Vote for this issue

Watchers:: 5 Start watching this issue

Dates

Created:: 10/Jun/2020 3:26 AM

Updated:: 10/Feb/2023 6:32 AM

Resolved:: 21/Sep/2020 4:39 PM

[JIRAALIGN-1610] API 2.0 : Deactivating a user via PATCH call towards /align/api/2/Users/id endpoint produces inconsistent results

Details

Description

Issue Summary

Steps to Reproduce

Expected Results

Actual Results

Visual Differences

JSON Differences ¹

Audit Log

Workaround

Attachments

Attachments

Issue Links

Activity

People

Dates

Backbone Issue Sync

Details

Description

Issue Summary

Steps to Reproduce

Expected Results

Actual Results

Visual Differences

JSON Differences 1

Audit Log

Workaround

Attachments

Attachments

Issue Links

Activity

People

Dates

Backbone Issue Sync

JSON Differences ¹