I came in to post something similar I have been having recently. I saw this post so I am posting it here first since it could be related. In production: I log in. (even as admin) the user logs in but no pages that require permission is showing, This also happens when the user session timeout.
If I logout then log in with same user. That does not help
If I log out and then login with a DIFFERENT user. then I see the pages.
Sometimes clearing browser cache for the app AND the auth server both helps.
This is weird and started recently.
I am on latest (7)
If this is not related then I apologize for the OP. but please try to logout and log in with a different user and see if that help?
I have tried using different users to login, so I find this issue on the production, it has the same problem that is why I am worried it, because low level user could see the data which granted for the high level user.
hi
Did you add some custom code for permissions or seed permissions?
Can you share a username and password so I can reproduce it online?
liming.ma@volosoft.com
No customized code for permission related code.
I did a stupid thing, deleted all the permission grant records directly on the production environment, now, can not find a production data to reproduce it, I am observing the permission grant records changes when adding them manually, but before I deleted them there were some odd records with "ProviderKey" filed value, it is a Guid not is a role name, I am not sure how them generated.
I will share the information with you as new permission grant generating
hi
You can find a way to reproduce it. Then I can resolve it.
It occurred in production, I can not find a way to fix it, I can not wait anymore, I have deleted all the permission grant records. Now, I am adding the permission grant again manually
I tried delete all the records in the PermissionGrant table
What were the previous records?
More than 4 thousands record for variant roles.....
hi
Can I reproduce this in a new template project?
You can also try to clear the Reids.
I had tried clear the redis caching, no effort It works well with a new template, this problem occurred on my production environment after upgraded to abp 7.0.
it is so strange, I tried delete all the records in the PermissionGrant table, now, all the user cannot get any permission
Thanks, maliming, problems resolved by your suggestions
The specified access token is bound to an account that no longer exists
Please try to clear the Redis cache.
Tried, still occurred
You should run the "abp install-libs" cli to install the vue related packages to your local
Thanks for your detailed explanation, I will try to override the DownloadAsync method in the FileManagement module. Although the links which in the uploaded files list, with a token as the query string, but it still cannot be verified when click the download link to preview the file, is this not updated with 5.0.0?
Hi @cotur, could you have a look on this issue? The File Management module already got a token then bind to the link to get a file, but it still has this issue.
The FileManagement module with abp ver 5.0.0, when download the uploaded file Access the download link "https://localhost:44302/api/file-management/file-descriptor/download/580dc21e-c971-1ab1-d7ad-3a00f84c15bc?token=4f18829e-f70b-4088-b039-333b705a08d8" it says unauthorized "{"error":{"code":"Unauthorized","message":"Unauthorized","details":null,"data":null,"validationErrors":null}}" But all the permissions already assigned for file management module.
Can you help me figure out is there special permission for the download api?