Unexpected error without System Administrator or System Customizer role

(0) Share

Report

Posted on by PowerApps23

Hi All,

I have a model driven PowerApp and have customized the Project entity from the MS Project Solution (and added additional customer entities). Now i want to add security to my solution. I have created a role (called Project Managers) and given it all the security permissions that are required for my custom entities.

For users of the app i assigned common data service role (So that it takes care of all the basic access for me) in addition to my custom role (to give the required permissions for my custom entities).

The problem is that i can navigate to any entity in my app without issue but if i tried to open a Project record i get the below error. If i assign the user System Admin or System Cusomizer role i do not get the error.

So to try and narrow down if it was any permissions i was missing i created another role (called Test Project Managers) and gave it permission to everything (In all the tabs below i gave all permissions). Essentially making the user a System Admin. But it still gives an error. As soon as i assign the default System Admin or System Customizer role for the user i have no issues.

Would appreciate any guidance for this issue.

Cheers

I have the same question (0)

All responses (6)

Answers (1)

Suggested answer

Henry J. 5,237 on at

Like (0)

Report

The error message that you shared doesn't contain the typical missing security privilege that we see in case of security role issues.

Can you open a Support Request so that you get help in troubleshooting this? https://admin.powerplatform.microsoft.com/support

Henry

Was this reply helpful? Yes No
Ana Almeida on at

Like (0)

Report

Hello,

To open a Project record it's necessary to have Edit permissions.

This entity have relationships with project approvals, time entries and others. So you need to give permissions to the related entities as well.

Can you check that?

The error message contain an ActivityId? If yes, can you send me?

Was this reply helpful? Yes No
PowerApps23 55 on at

Like (0)

Report

Hi Ana,

Thanks for your response. I have created a test role and given that test role every single permission and then assigned that test role to the user but i still get the error. I have even assigned a project record to the user with no luck.

I need to deploy this application for UAT soon and i have run out of ideas to try.

This is the error text. It does not contain an Activity ID:

An error has occurred. [object Object] at Microsoft.Crm.Extensibility.OrganizationSdkServiceInternal.Execute(OrganizationRequest request, InvocationContext invocationContext, CallerOriginToken callerOriginToken, WebServiceType serviceType, Boolean checkAdminMode, ExecutionContext executionContext, Dictionary`2 optionalParameters) at Microsoft.Crm.Extensibility.OData.CrmODataExecutionContext.Execute(OrganizationRequest request, ExecutionContext executionContext) at Microsoft.Crm.Extensibility.OData.CrmODataServiceDataProvider.ExecuteOperation(CrmODataExecutionContext context, EdmOperation edmOperation, Dictionary`2 parameters, Dictionary`2 boundParameters) at Microsoft.Crm.Extensibility.OData.ActionController.ProcessOperationRequest(String operationName, Dictionary`2 operationParameters, EntityReference entityReference, String boundEntityName, String boundEntityType) at Microsoft.Crm.Extensibility.OData.ActionController.<>c__DisplayClass12_0.<GetUnboundFunction>b__0() at Microsoft.Crm.Extensibility.OData.CrmODataUtilities.<>c__DisplayClass10_0`2.<InvokeActionAndLogMetric>b__0() at Microsoft.PowerApps.CoreFramework.ActivityLoggerExtensions.Execute[TResult](ILogger logger, EventId eventId, ActivityType activityType, Func`1 func, IEnumerable`1 additionalCustomProperties) at Microsoft.Xrm.Telemetry.XrmTelemetryExtensions.Execute[TResult](ILogger logger, XrmTelemetryActivityType activityType, Func`1 func) at lambda_method(Closure , Object , Object[] ) at System.Web.Http.Controllers.ReflectedHttpActionDescriptor.ActionExecutor.<>c__DisplayClass10.<GetExecutor>b__9(Object instance, Object[] methodParameters) at System.Web.Http.Controllers.ReflectedHttpActionDescriptor.ExecuteAsync(HttpControllerContext controllerContext, IDictionary`2 arguments, CancellationToken cancellationToken) --- End of stack trace from previous location where exception was thrown --- at System.Runtime.ExceptionServices.ExceptionDispatchInfo.Throw() at System.Runtime.CompilerServices.TaskAwaiter.HandleNonSuccessAndDebuggerNotification(Task task) at System.Web.Http.Controllers.ApiControllerActionInvoker.<InvokeActionAsyncCore>d__0.MoveNext() --- End of stack trace from previous location where exception was thrown --- at System.Runtime.ExceptionServices.ExceptionDispatchInfo.Throw() at System.Runtime.CompilerServices.TaskAwaiter.HandleNonSuccessAndDebuggerNotification(Task task) at System.Web.Http.Controllers.ActionFilterResult.<ExecuteAsync>d__2.MoveNext() --- End of stack trace from previous location where exception was thrown --- at System.Runtime.ExceptionServices.ExceptionDispatchInfo.Throw() at System.Runtime.CompilerServices.TaskAwaiter.HandleNonSuccessAndDebuggerNotification(Task task) at System.Web.Http.Dispatcher.HttpControllerDispatcher.<SendAsync>d__1.MoveNext()

Thanks.

Was this reply helpful? Yes No
PowerApps23 55 on at

Like (1)

Report

Hi Henry,

Thanks for you response. I have submitted a ticket for this issue.

Cheers.

Was this reply helpful? Yes No
Verified answer

PowerApps23 55 on at

Like (1)

Report

I was able to solve the issue with the help of Microsoft support. Thanks Henry and Ana for you help.

For anyone in the future the issue was that even though i had given the user all the required roles I had not enabled the role on the form. Enabling the role like below solved the issue.

Cheers

Was this reply helpful? Yes No
Henry J. 5,237 on at

Like (0)

Report

Thank you for sharing the outcome, good to see support helped troubleshoot this

Was this reply helpful? Yes No