Hello,
I’m configuring a ATLAS config with Active directory authentication, but the UI is not validating the authorization.
I’m using AD for authentication only, using SECURITY_AD_SEARCHFILTER: “”,
user is able to authenticate but every module shows
You do not have access to this feature.
For more information on how to get access please contact the System Administrator.
WebAPI/user/me can be seen on browser devtools with all the roles after sucessfull login.
Most of network activity is 304 (from cache).
This is not related to AD. You should grant first user with Admin role and User role anyway. Unfortunately, it should be done directly in database.
You can find instructions here:
That you Konstantin,
I have added admin role to the user created on login via database and then logout, ctrl+shift+R, application data site clear and login again.
Using the browser devtools, I can see that
User loggin/logout sequence works
WebAPI/user/login/ad was sucessfulluser
WebAPI/user/me returns all the admin permissions
Somehow, every module is showing you do not have access to this feature.
It’s driving me crazy!
It seems all is good with your setup. Please check that
- Atlas User role is granted
- Data source is added and users are granted with Source User role.
Thank you Konstantin!
I started looking for other issues with devtools, and found that WebAPI/user/me was not returning permissionIdx, leading to AuthAPI.js function loadUserInfo not working.
I would still be looking in the wrong place if not for your input.
This issue was about the same problem:
https://github.com/OHDSI/Atlas/issues/2925
I was running Atlas 2.15.0 DEV vs WebAPI 2.14.0, a combo that is NOT compatible.
Atlas 2.15.0 and WebAPI 2.15.1 works fine.