-
Bug
-
Resolution: Fixed
-
Neutral
-
None
With "superuser" account users cannot access GraphQL app or GraphQL API.
Steps to reproduce:
1. Run dx-core webapp and login with "superuser" account
2. Access GraphQL app or call GraphQL API
Â
Actual result:
GraphQL app: The user is redirected to the login page
GraphQL API: The user gets 403 response status code
Â
Expected result:Â
The user should be able to access both GraphQL app and GraphQL API
Workaround:
1. Grant web access permission "/.*" in Security app to superuser
2. Another way is that we can create a new user account with superuser role and then use the user to access GraphQL
Note:
The issue is that "superuser" account does not have permission to access "./*" url pattern.
See logs below:
Â
- is related to
-
MGNLRES-404 Create resources-editor role that allow get from /.resources/*
- Closed