Support Article
Rule-Service: Security error for activities that require auth
SA-40519
Summary
Through a Rest service, few activities are getting called. Service package is having "Requires Authentication?" Un-Checked.
The initial activity from the rest-service is having "Authenticate?" un-checked which calls a Pega Out-of-the-box (OOTB) activity "pxGetArchiveContent" which has "Authenticate?" Checked. When running the service an exception is occurring.
Error Messages
You lack access required to execute RULE-OBJ-ACTIVITY
Steps to Reproduce
1. Create a rest service.
2. Uncheck "Requires Authentication?" in it's service package.
3. Call an activity from Rest service having "Authenticate?" Un-Checked.
4. From above mentioned activity call any OOTB activity having "Authenticate?" checked.
5. Observe the error in the log after executing the rest-service that "You lack access required to execute RULE-OBJ-ACTIVITY" error appears.
Root Cause
Prior to Pega 7.1.6, activities run in an unauthenticated Rule-Service, will not process if they require authentication.
Resolution
There is a patch for PRPC 6.3SP1: HFix-20837. This patch contains 165 dependencies.
If the Rule-Service is not running high volume, one can enable authentication in the Service Package as well.
Published September 27, 2017 - Updated October 8, 2020
Have a question? Get answers now.
Visit the Collaboration Center to ask questions, engage in discussions, share ideas, and help others.