Hi @Helene ,
Thanks for replying.
Can you confirm that the definition keys are unique
Yes, I can confirm that they are different.
lets confirm that this user definitely only exists on PE 2
I debugged the identity plugin and the ReadOnlyIdentityProvider.checkPassword()
method returns false for the user in PE 1
and also UserQueryImpl.executeList()
method with the user Id returns an empty list in case of PE 1
, while PE 2
the ReadOnlyIdentityProvider.checkPassword()
method returns true and the UserQueryImpl.executeList()
returns a list of length 1 as expected.
To double check, when querying the process engines’ API for user “userx”
For PE 1
{
"authenticatedUser": "userx",
"groups": null,
"tenants": null,
"authenticated": false
}
For PE 2
{
"authenticatedUser": "userx",
"groups": null,
"tenants": null,
"authenticated": true
}
The process engine end points return the following results when queried for the permissions for the user.
For PE 1
[
{
"id": "2301",
"type": 0,
"permissions": [
"ALL"
],
"userId": "*",
"groupId": null,
"resourceType": 6,
"resourceId": "*",
"removalTime": null,
"rootProcessInstanceId": null
},
{
"id": "2302",
"type": 0,
"permissions": [
"ALL"
],
"userId": "*",
"groupId": null,
"resourceType": 0,
"resourceId": "optimize",
"removalTime": null,
"rootProcessInstanceId": null
}
]
And for PE 2
[
{
"id": "2501",
"type": 0,
"permissions": [
"ALL"
],
"userId": "*",
"groupId": null,
"resourceType": 6,
"resourceId": "*",
"removalTime": null,
"rootProcessInstanceId": null
},
{
"id": "2502",
"type": 0,
"permissions": [
"ALL"
],
"userId": "*",
"groupId": null,
"resourceType": 0,
"resourceId": "optimize",
"removalTime": null,
"rootProcessInstanceId": null
}
]
were both engines configured in Optimize from the first start?
Yes, they were configured from the first start.