we are trying to redeploy an (old-ish) Java Microservice to one of our tenant but it fails to start with a “Failed to parse error message to json” “403 Forbidden”
error.
I checked the logs and the error seems to come from com.cumulocity.microservice.settings.repository.CurrentApplicationSettingsApi.lambda$findAll - which looks like it should do just a call to
application/currentApplication/settings
So … I’m confused. I already updated the SDK version to a newer version, removed all the code that could potentially overwrite the default rest connector and played around with the roles but it didn’t help
The REST doc also states pretty much no roles (apart of the MS user) are required.
So - whats the issue here? Is there anything else needed? Is there a way to check that the correct user is being used?
Did you start with a new application or did you try to upload the binary to an existing application?
If second I would try to start with a new application.
I deleted the existing app and tried to let it subscribe by itself.
I noticed that it seems to have to do with the MULTI_TENANT isolation…if I build it with PER_TENANT and deploy it to a different (non-management) tenant it seems to work.
Docs say that this request requires a microservice bootstrap user or a microservice service user. Cumulocity - OpenAPI
So this means your service must be bootstrapped correctly and not use legacy bootstrap. Otherwise there will not be a dedicated bootstrap user and you see these 403 responses.
Hm, no. Does the C8Y.microservice.isolation need to be set in the application.properties or is it enough if it is in the cumulocity.json?
What are username and password here? I assume the bootstrap ms credentials? Shouldn’t those come automatically from the Environment or do I need to set them explicitly in the application.properties?
