Issue with Identity Component: "Forbidden" and Unauthorized



I’m encountering an issue with the identity component in my Camunda deployment, and I could use some assistance in troubleshooting and resolving it.

Issue Summary: Whenever I attempt to update or create resources (ex: create new role, create client, create tenant)using an admin account (demo), I encounter the following error messages:

  • “Forbidden: You don’t have access to perform this operation on the given resource.”
  • “Unauthorized: You don’t have access to this resource.”

Environment Details:

  • Camunda Version: 8 Self-Managed Helm charts version 9.0.2
  • Deployment Method: Kubernetes

Steps Taken:

  1. Verified that the user account has admin privileges.
  2. Checked the configuration of Camunda process engine.
  3. Reviewed Camunda Webapps configuration for authentication and authorization settings.
  4. Examined Camunda engine logs for any relevant error messages.
  5. Ensured there are no network or firewall issues.

Additional Information:

  • Are there any known issues or common pitfalls related to identity management in Camunda deployments?
  • Have there been any recent updates or changes in Camunda Helm charts that might affect identity management?

Any insights or guidance on how to address this issue would be greatly appreciated. Thank you for your assistance!