User with rights to edit instance settings but not having rights to all environments/instances is unable to edit instance settings

Mark the issue as Confidential to keep log files and screenshots private

1. Key information:

• Pulse Version 6.5.2

2. Items to attached

• conf\Pulse.cfg
• zip the Pulse logs folder
• screenshot of the Status tab in the Pulse About page
• tm1s.cfg
• tm1s-log.properties

3. Describe the bug

A user with incomplete environment/instance access is unable to navigate to Instance Settings and update settings for an instance to which the group they are a member of has been given rights to. When attempting to navigate the user is redirected to login, presumably due to incomplete access. This results in a never ending authentication loop.

I couldn't really capture the console and network tab errors as due to the nature of OIDC login and redirecting to new tabs and closing.

4. To Reproduce

Steps to reproduce the behavior:

1. Define a group with rights to edit instance settings but limited environment/instance access
2. Assign a user to the group
3. Using this user attempt to navigate to Instance Settings

5. Expected behavior

The user should be able to navigate to instance settings without any additional authentication challenge and see only the environments and instances which they have rights to and be able to edit instance settings.

6. Screenshots

Example of access. If a user who is only a member of this group tries to navigate to Administration > Instance Settings then they get redirected to the login and end up in a never-ending loop of authenticating and bounced back to login.