Loading...

XML

Word

Printable

Details

Type: Bug
Resolution: Obsolete
Priority: Major
Fix Version/s: None
Affects Version/s: 2.12.0
Component/s: 3scale Operator
Labels:
- icebox

Blocked:
False
Blocked Reason:
None
Ready:
False
3Scale PT Tested upstream:
Not Started
3scale PT Docs:
Not Started
3scale PT Product Specs:
Not Started
3scale PT Product Update Ready:
Not Started
3scale PT Released In Saas:
Not Started
3scale PT Verified Product:
Not Started

SFDC Cases Counter:
SFDC Cases Links:

Description

During automation for THREESCALE-7932 I've found that 3scale Operator creates only RO access token with scope only for accounts:

{
   "access_token": {
    "id": 319,
    "name": "OIDC Synchronization Token",
    "scopes": [
     "account_management"  <-----------
    ],
    "permission": "ro" <---------------
   }
  },

Users cannot use it(tenantSecretRef) for obvious reasons in any Capabilities CRD for creating objects in 3scale.
There is workaround to access UI or API by admin password(passwordCredentialsRef) to create RW token with wider scope.

Attachments

Activity

People

Assignee:: Unassigned

Reporter:: Martin Kudlej

Votes:: 0 Vote for this issue

Watchers:: 3 Start watching this issue

Dates

Created:: 2022/04/04 3:40 PM

Updated:: 2024/01/30 4:51 PM

Resolved:: 2024/01/30 4:51 PM