Hi,
I have deployed thorugh the provided helm chart Camunda 8.5 components connected to an OIDC provider following the documentation here : Connect to an OpenID Connect provider | Camunda 8 Docs
Service account / client “connectivity” is working fine (BPMN can be deployed on the Zeebe cluster through zbctl CLI, Operate API are reachable, …) however user access to the Camunda components Web User Interfaces (Identity, Operate, …) is not mentionned in the " Connect to an OpenID Connect provider" documentation.
Setting up a “demo” user in my OIDC provider with the appropriate roles, I have got the following messages once connected through my OIDC provider login page :
- Operate Web UI : “No permission for Operate - Please check your operate configuration or cloud configuration”
- Operate container logs :
2024-07-23 10:12:45.211 ERROR 7 --- [nio-8080-exec-6] i.c.o.w.s.i.IdentityController : Error in authentication callback: org.springframework.security.authentication.InsufficientAuthenticationException: No read permissions
- Identity Web UI: “Failmunda - 403 unauthorized”
Could you elaborate on what specific configuration needs to be done for users ?