"User Is Not authorized" Trying to Access the Announcements When the User Belongs to a Specific Group (Doc ID 2090127.1)

Last updated on MARCH 08, 2017

Applies to:

Oracle WebCenter Portal - Version 11.1.1.8.5 and later
Information in this document applies to any platform.

Symptoms

Members from a Group with VIEWER (announcements) role are not able to see the announcements, get the message:

"User is not authorized."

WC_Spaces-diagnostic.log shows:

[WC_Spaces] [WARNING] [] [oracle.webcenter.collab.share.security.DefaultRoleMapper] [tid: [ACTIVE].ExecuteThread: '4' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: hzhan] [ecid: 0059j6vlJ^M3r2Y5Pr_Aid00051^000512,0:2] [APP: webcenter#11.1.1.4.0] [URI: /webcenter/faces/oracle/webcenter/page/scopedMD/s5f9c65ed_c93c_4467_96cf_06a82f3dad22/PortalAdminSecurity.jspx] Enterprise role not found: rcpsc_internal.[[
oracle.webcenter.collab.share.GroupSupportException: Enterprise role not found: rcpsc_internal.
at oracle.webcenter.collab.announcement.internal.jive.JiveAnnouncementGroupSupport.enterpriseRolesAdded(JiveAnnouncementGroupSupport.java:423)
at oracle.webcenter.collab.share.security.DefaultRoleMapper.addEnterpriseRoles(DefaultRoleMapper.java:401)
at oracle.webcenter.security.rolemapping.RoleManager.addEnterpriseRoles(RoleManager.java:575)
at oracle.webcenter.webcenterapp.internal.model.security.WCSecurityManagerImpl.grantRoleForRoleMappedServices(WCSecurityManagerImpl.java:1309)
at oracle.webcenter.spaces.internal.model.security.SpacesSecurityManagerImpl.grantInternalRole(SpacesSecurityManagerImpl.java:1296)
at oracle.webcenter.spaces.internal.model.security.SpacesSecurityManagerImpl.grantRoleAndPublishActivity(SpacesSecurityManagerImpl.java:3079)
at....

Caused by: oracle.webcenter.collab.share.GroupSupportException: Enterprise role not found: rcpsc_internal.
at oracle.webcenter.collab.announcement.internal.jive.JiveAnnouncementGroupSupport.enterpriseRolesAdded(JiveAnnouncementGroupSupport.java:423)
at oracle.webcenter.collab.share.security.DefaultRoleMapper.addEnterpriseRoles(DefaultRoleMapper.java:401)
... 126 more

 

If the user is assigned directly, the announcements show up on the page for that user.



Steps To Reproduce:

The issue can be reproduced at will with the following steps:

  1. Create a new Private Portal
  2. Go to Administration > Portals > Choose the Portal created on step 1 > Administer > Tools and Services > enable announcement service
  3. Go to the Portal Page, and add announcement task flow to a page.
  4. Create some announcements.
  5. Access to the FMW Console and create a user and a group on your OID.
  6. Go to Administration > Portals > Choose the Portal created on step 1 > Administer > Security > Roles > Edit the "Viewer" role > Add "View Announcements" permission.
  7. Using the FMW console, Add the user to the group.
  8. Back to portal Administration > Portals > Choose the Portal created on step 1 > Administer > Security> Members
  9. Add the user created on step 5 with the "Viewer" Role.
  10. Login to portal by using this user.
    -->Announcements are displayed.
  11. Logout and login to portal by moderator user.
  12. On portal security setting, remove the user from viewer role member.
  13. Add the group to viewer role.
  14. Logout and login to portal again with the new user, the following message will appears:
    -->Announcements are displayed.




Cause

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms