Re: Update a user token scope

Paul Bakare

Says it all. Thanks

On Wed, Mar 2, 2016 at 9:51 PM, Chris De Oliveira <cdutra(a)> wrote:

Uaa doesn't have support for PATCH on /Users endpoints.

On Wed, Mar 2, 2016 at 3:24 AM, Kayode Odeyemi <dreyemi(a)> wrote:

Is there a test coverage for User PATCH update?

Couldn't find any at

Steps to replicate:
uaac target http://localhost:8080/uaa
uaac token client get admin -s adminsecret
uaac -t curl -H 'Cookie: JSESSIONID=A1F9D1FDBF7D3EDADE74318EE7666613' -H
"Content-Type: application/json" -X PATCH -d {"emails":[{"value": "
marissa(a)", "primary": true}]}'

Token has got the the scim.write scope, but I'm getting a forbidden
error: {"error":"access_denied","error_description":"Access is denied"}

I've exhausted all options and would appreciate some help.

On Tue, Mar 1, 2016 at 5:59 PM, Kayode Odeyemi <dreyemi(a)> wrote:

Thanks Chris.

However, my token when decoded, has got "scim.write" scope set:


But I still get a 403 Forbidden

On Mon, Feb 22, 2016 at 9:52 AM, Chris De Oliveira <cdutra(a)>

Hi Kayode,

If the user is trying to update their own recored you don't need any
particular scope for your client. But if updating other user's record you
need "scim.write".

Chris Dutra

On Sun, Feb 21, 2016 at 9:36 PM, Kayode Odeyemi <dreyemi(a)>


The docs at doesn't
define the scope for user update API endpoint.

Can someone assist with this? What's the token scope for a user
updating own User info?

Appreciate your help

Join to automatically receive all group messages.