Hi folks,
quick question regarding the application authorizations: the documentation describes how to limit access to the camunda cockpit and tasklist webapplication for certain users/groups. This is simple enough and straightforward. However, testing things on camunda v 7.2.1-ee I am bit puzzled that there seems no impact on accessing the camunda admin webapplication.
To make it clear: I define an application authorization for a certain user group that gives access to the tasklist webapplication only. The expected behavior is that that a user of this group can access the tasklist, but not the camunda cockpit and also not the admin webapplication. However, the current behavior is that the cockpit application is indeed not offered, but the admin web application is still visible to the user. Most parts of the admin application are read-only though (users and groups), but it is still possible for the user to enter a new license key (system tab). Okay, it is arguable how much harm is done with the current behavior, but to avoid confusion on the user side, I would like to prevent that users of this group get access to the admin web application at all.
Is it possible to prevent access/hide the camunda admin webapplication using an application authorization? As stated my initial expectation was that the admin web application is not different here to the cockpit and tasklist webapplication authorization, but maybe I am missing here some background/motivation for the current behavior. Anyway, any hints or workarounds to achieve the desired behavior would be appreciated.
Thanks in advance,
Klaus