Uploaded image for project: 'Jira Align'
  1. Jira Align
  2. JIRAALIGN-1689

[JIRAALIGN-1689] API 2.0 - Users: PUT and POST requests are returning 401 Unauthorized error for a user that has all required permissions

    XMLWordPrintable

Details

    • 3
    • Severity 2 - Major
    • Breakers - TART4, Rockets - Usher 8

    Description

      Issue Summary

      API 2.0 - Users: PUT and POST requests are returning 401 Unauthorized error for a user that has all required permissions

      Steps to Reproduce

      1. Login
      2. Create a new role with only Add Agile Objects and People permissions enabled. This set of permissions allows the user to add a new user from the UI.
      3. Now as a User with Role from Step 2 try to send PUT or POST request for Users API.

      Expected Results

      The user is updated through API or User is created through the API. The only check should be against the People permission toggle. This will match the UI.

      Actual Results

      401 Unauthorized error appears.

      Workaround

      Use a user assigned to the Super Admin role

      Attachments

        Issue Links

          mentioned in

          Page Loading...

          Page Loading...

          Page Loading...

          resolves

          ALIGNSP-4155 Loading...

          Activity

            People

              kforeman@atlassian.com Kyle Foreman
              rpetrunyak@atlassian.com Roman Petrunyak (Inactive)
              Votes:
              3 Vote for this issue
              Watchers:
              12 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved:

                Backbone Issue Sync