-
Notifications
You must be signed in to change notification settings - Fork 6.3k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Unable to remove Authorization
tab from master-realm
client
#29443
Comments
Is this the same as #29423? |
@sschu Yes. I am keeping this open and closing the other since this is not a UI but core issue that manifests itself on UI. |
I feel like it may be a UI bug - why is the tab not just always shown, and just doesn't show data if there is none to show? The link between the tab showing and the functionality being enabled seems weak to me - it depends on things outside of the master-realm client itself. |
@Jamstah Authorization tab is meaningless for clients unused for authorization. Hence the tab should not be visible. UI has not enough information to decide whether permissions are enabled for a particular client, this data is available in the server though. Authz applicability is signalled to the UI using the |
I'm not sure I completely agree, I don't think the UX of the master realm client should change depending on the configuration of other clients. I do agree that there is a core bug! However, as long as it isn't impacting the tests, I'm not going to worry about it :) |
The way fine-grained admin works, the authz settings are stored within the realm management client. That is why enabling permissions on any client ends up showing this tab at the realm management client. If you are in the Disabling permissions does not disable the flag in the client itself but only removes the authz-related data associated with users, roles, clients, groups, etc. We can improve so I'm adding priority normal and adding to our backlog. We have plans to review fine-grained admin in the future so we can handle this one at that time. Please, let me know if you think otherwise. |
Due to the amount of issues reported by the community we are not able to prioritise resolving this issue at the moment. If you are affected by this issue, upvote it by adding a 👍 to the description. We would also welcome a contribution to fix the issue. |
Before reporting an issue
Area
core
Describe the bug
Once permissions are enabled on a role, the
master-client
shows Authorization tab (since theauthorizationServicesEnabled
flag is enabled in respectiveClientRepresentation
). Disabling the permissions in the role however has no impact on theauthorizationServicesEnabled
flag which remainstrue
with no way to switch it tofalse
, even if there is now no object for which permissions are enabled.Version
main
Regression
Expected behavior
When no permissions are enabled, the
authorizationServicesEnabled
isfalse
.Actual behavior
When no permissions are enabled, the
authorizationServicesEnabled
remainstrue
if previously enabled.How to Reproduce?
master-realm
client and check there is noAuthorization
tab (its visibility is controlled byauthorizationServicesEnabled
flag)master-realm
client and check there is nowAuthorization
tab displayedmaster-realm
client and check theAuthorization
tab is still displayedAnything else?
This caused #29440.
Similar (if not the exactly the same) issue is #29423
The text was updated successfully, but these errors were encountered: