Details
-
Sub-task
-
Resolution: Done
-
Minor
-
None
-
None
-
None
-
4.9.21 - 4.23.21, 4.22.21 - 5.6.21, 6.18.21 - 7.2.21, 7.2.21 - 7.16.21, 7.16.21 - 7.30.21, 7.30.21 - 8.13.21
Description
Removing an admin from the admin group results in a 400 with an exception.
Steps to reproduce:
1. Start up the app with the dev profile (just need a second user)
2. Assign a test user to the ADMIN-GROUP group
3. Give the above test user the ROLE_ADMIN role
4. Attempt to remove the test user from the ADMIN-GROUP group
Expected result:
??? If admins should be restricted to the ADMIN-GROUP as per Confluence, then an error message stating such should be displayed.
Actual result: No change is displayed in the UI. a 400 is returned with the following exception:
{"errorCode":"400","errorMessage":"org.hibernate.ObjectDeletedException: deleted object would be re-saved by cascade (remove deleted object from associations): [edu.internet2.tier.shibboleth.admin.ui.security.model.UserGroup#UserGroupKey(resourceId=admingroup, userId=7)]; nested exception is java.lang.IllegalArgumentException: org.hibernate.ObjectDeletedException: deleted object would be re-saved by cascade (remove deleted object from associations): [edu.internet2.tier.shibboleth.admin.ui.security.model.UserGroup#UserGroupKey(resourceId=admingroup, userId=7)]","cause":"org.hibernate.ObjectDeletedException: deleted object would be re-saved by cascade (remove deleted object from associations): [edu.internet2.tier.shibboleth.admin.ui.security.model.UserGroup#UserGroupKey(resourceId=admingroup, userId=7)]"}