Rule-Service: Security error for activities that require auth
Through a Rest service, few activities are getting called. Service package is having "Requires Authentication?" Un-Checked.
The initial activity from the rest-service is having "Authenticate?" un-checked which calls a Pega Out-of-the-box (OOTB) activity "pxGetArchiveContent" which has "Authenticate?" Checked. When running the service an exception is occurring.
You lack access required to execute RULE-OBJ-ACTIVITY
Steps to Reproduce
1. Create a rest service.
2. Uncheck "Requires Authentication?" in it's service package.
3. Call an activity from Rest service having "Authenticate?" Un-Checked.
4. From above mentioned activity call any OOTB activity having "Authenticate?" checked.
5. Observe the error in the log after executing the rest-service that "You lack access required to execute RULE-OBJ-ACTIVITY" error appears.
Prior to Pega 7.1.6, activities run in an unauthenticated Rule-Service, will not process if they require authentication.
There is a patch for PRPC 6.3SP1: HFix-20837. This patch contains 165 dependencies.
If the Rule-Service is not running high volume, one can enable authentication in the Service Package as well.