User deactivation error

yures · November 1, 2021, 12:54pm

Description

Hi Folks. When I try to deactivate a user, I get an error message: “Leaving the app without an active admin is not allowed [error-action-not-allowed]”, but I have the admin role. It was OK on the last version 3. But now, after upgrading to 4.1.0, this happens. Is this a bug or something needs to be adjusted somewhere?

Server Setup Information

Version of Rocket.Chat Server: 4.1.0
Operating System: Ubuntu 20.04
Deployment Method: tar
Number of Running Instances: 2
DB Replicaset Oplog: yes
NodeJS Version: 12.22.1
MongoDB Version: 5.0
Proxy: nginx
Firewalls involved:

dudanogueira · November 1, 2021, 2:24pm

Hi @Yures! Welcome to our forum.

I think this is probably something introduced at 4.1.0 according to here:

the release notes point to this PR here:

github.com/RocketChat/Rocket.Chat

[FIX] Avoid last admin deactivate itself

RocketChat:develop ← RocketChat:lastAdminDeactivateItself

opened 12:57PM - 17 Aug 21 UTC

ostjen

+21 -0

## Proposed changes (including videos or screenshots)  Co-authored-by: @Kartik18g ## Issue(s) ## Steps to test or reproduce ## Further comments

Please, can you:

Reproduce this behavior on a clean new install?
detail the exact steps and order to reproduce it?

We should triage this, and understand if it’s indeed a bug or an expected behavior.

If it’s a bug, we can open up an Issue at the github repo.

Thanks!

yures · November 2, 2021, 7:50am

Made a clean installation. The versions are the same as in the working installation. The settings are all by default. Created a user and when I try to deactivate it, the same error. Also another error came up, when trying to change the password of the user in the admin panel, there is an error: “TOTP Required [totp-required]”.

dudanogueira · November 3, 2021, 5:27pm

Hi Yures!

I was able to reproduce this error. It’s indeed a bug.

You can no longer deactivate any user because of this new check. The user I tried to deactivate is not even an admin.

This will happen if you only have one admin. If you create a second admin, it will work.

it probably needs to check if the user marked for deactivation is an admin.

I can confirm the same happens when trying to deactivate thru the REST API:

In [9]: t = rocket.users_set_active_status(user_id="L9GwYzGLotxnfgTp8", active_status=False)

In [10]: t
Out[10]: <Response [400]>

In [11]: t.json()
Out[11]: 
{'success': False,
 'error': 'Leaving the app without an active admin is not allowed [error-action-not-allowed]',
 'errorType': 'error-action-not-allowed',
 'details': {'method': 'removeUserFromRole', 'action': 'Remove_last_admin'}}

dudanogueira · November 3, 2021, 6:12pm

Hey again! I just produced a PR to fix this:

Thanks!!

Topic		Replies	Views
Set User active status True Community Support	2	477	October 13, 2021
Deactivated user and readonly room/channel mode Community Support	0	781	March 9, 2021
BUG on Admin Panel Community Support snap	10	264	September 25, 2024
Reactivating a deactivated user, certain user permission groups messages are read only Community Support	5	713	April 13, 2022
disabled={usersCount === 0 Community Support	0	366	July 19, 2022

[Rocket.Chat v7.0: Join the webinar] Roadmap Reveal: on-prem AI, VoIP, and more! Save your seat ->

User deactivation error

Description

Server Setup Information

Related topics