As discussed with Asela offline, SimpleRealmConfigBuilder need to add same permission(/permission/admin) to the tenant admin as CommonLDAPRealmConfigBuilder since it gives wider permission. I have created a jira[0] and attached the patch. Please apply the patch to the patch0006. Thanks
On Tue, Jan 21, 2014 at 2:33 PM, Ajanthan Balachandran <[email protected]>wrote: > Hi All, > When i connected to JDBCUserstore with SimpleRealmConfigBuilder after > creating tenant i can observer that /permission is given to admin role > of the tenant. > but when i connected to LDAP user store with > CommonLDAPRealmConfigBuilder i can see /permission/admin is given to > admin role. > > If you look at the CommonLDAPRealmConfigBuilder there you can see that > the AdminRoleManagementPermissions property is overwritten by > /permission/admin but in > SimpleRealmConfigBuilder it is cloned from bootstrap config. > > Shall we fix this ? Due to this problem we are not able to call > Stratos admin APIs after connecting to LDAP. > > Thanks. > > -- > ajanthan > -- > Ajanthan Balachandiran > Senior Software Engineer; > Solutions Technologies Team ;WSO2, Inc.; http://wso2.com/ > > email: [email protected]; cell: +94775581497 > blog: http://bkayts.blogspot.com/ > > Lean . Enterprise . Middleware > -- ajanthan -- Ajanthan Balachandiran Senior Software Engineer; Solutions Technologies Team ;WSO2, Inc.; http://wso2.com/ email: ajanthan <http://goog_595075977>@wso2.com; cell: +94775581497 blog: http://bkayts.blogspot.com/ Lean . Enterprise . Middleware
_______________________________________________ Dev mailing list [email protected] http://wso2.org/cgi-bin/mailman/listinfo/dev
