An RH-SSO user with "manage-users" role can self-assign to the "realm-admin" role to have full administrative control of a realm configuration
Issue
- User now has a full admin control on all aspects of the realm configuration, which is not initially intended to him/her
Environment
- Red Hat Single Sign-On (RH-SSO)
- 7.0
- 7.1.x
- 7.2.0, 7.2.1
- An user with the
manage-users
role inrealm-management
client can promote himself torealm-admin
role
Subscriber exclusive content
A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.