<User> cannot be deleted; they belong to a read-only directory.

Symptoms

When trying to delete a particular user from Stash's Administration section, the following error is reported on screen:

User <Username> cannot be deleted; they belong to a read-only directory. Consult the logs for more details.

 

And following warning is reported in <STASH_HOME>/log/atlassian-stash.log file:

2015-05-08 09:26:08,804 WARN  [http-nio-7990-exec-3] stashadmin @6TROM6x566x112x0 1toy15b 0:0:0:0:0:0:0:1 "DELETE /admin/users HTTP/1.1" c.a.stash.internal.crowd.RiotPolice User jiraadmin could not be deleted
com.atlassian.crowd.exception.OperationNotPermittedException: com.atlassian.crowd.exception.ApplicationPermissionException: Not allowed to delete user 'Username' from directory 'Directory'.
	at com.atlassian.crowd.embedded.core.CrowdServiceImpl.removeUser(CrowdServiceImpl.java:505) ~[embedded-crowd-core-2.8.1-m3.jar:na]
	at com.atlassian.stash.internal.crowd.RiotPolice$5.execute(RiotPolice.java:196) [stash-service-impl-3.6.1.jar:na]
	at com.atlassian.stash.internal.crowd.RiotPolice$5.execute(RiotPolice.java:191) [stash-service-impl-3.6.1.jar:na]
	at com.atlassian.stash.internal.crowd.RiotPolice.execute(RiotPolice.java:680) [stash-service-impl-3.6.1.jar:na]
	at com.atlassian.stash.internal.crowd.RiotPolice.deleteUser(RiotPolice.java:191) [stash-service-impl-3.6.1.jar:na]
	at com.atlassian.stash.internal.user.DefaultUserAdminService.deleteUser(DefaultUserAdminService.java:288) [stash-service-impl-3.6.1.jar:na]
	at com.atlassian.stash.internal.user.DefaultUserAdminService.deleteUser(DefaultUserAdminService.java:56) [stash-service-impl-3.6.1.jar:na]
	at com.atlassian.stash.internal.rest.user.UserAdminResource.deleteUser(UserAdminResource.java:214) [stash-rest-3.6.1.jar:na]
	at com.atlassian.applinks.core.rest.context.ContextFilter.doFilter(ContextFilter.java:25) [applinks-plugin-4.3.5_1418154064000.jar:na]
	at com.atlassian.stash.internal.spring.security.StashAuthenticationFilter.doFilter(StashAuthenticationFilter.java:86) [StashAuthenticationFilter.class:na]
	at com.atlassian.stash.internal.web.auth.BeforeLoginPluginAuthenticationFilter.doInsideSpringSecurityChain(BeforeLoginPluginAuthenticationFilter.java:111) [BeforeLoginPluginAuthenticationFilter.class:na]
	at com.atlassian.stash.internal.web.auth.BeforeLoginPluginAuthenticationFilter.doFilter(BeforeLoginPluginAuthenticationFilter.java:77) [BeforeLoginPluginAuthenticationFilter.class:na]
	at com.atlassian.security.auth.trustedapps.filter.TrustedApplicationsFilter.doFilter(TrustedApplicationsFilter.java:100) [atlassian-trusted-apps-core-3.0.8.jar:na]
	at com.atlassian.oauth.serviceprovider.internal.servlet.OAuthFilter.doFilter(OAuthFilter.java:79) [atlassian-oauth-service-provider-plugin-1.9.9_1418154064000.jar:na]
	at com.atlassian.security.auth.trustedapps.filter.TrustedApplicationsFilter.doFilter(TrustedApplicationsFilter.java:100) [atlassian-trusted-apps-core-3.0.8.jar:na]
	at com.atlassian.oauth.serviceprovider.internal.servlet.OAuthFilter.doFilter(OAuthFilter.java:79) [atlassian-oauth-service-provider-plugin-1.9.9_1418154064000.jar:na]
	at com.atlassian.analytics.client.filter.DefaultAnalyticsFilter.doFilter(DefaultAnalyticsFilter.java:32) [analytics-client-3.53_1418154066000.jar:na]
	at com.atlassian.analytics.client.filter.AbstractHttpFilter.doFilter(AbstractHttpFilter.java:32) [analytics-client-3.53_1418154066000.jar:na]
	at com.atlassian.stash.internal.web.auth.BeforeLoginPluginAuthenticationFilter.doBeforeBeforeLoginFilters(BeforeLoginPluginAuthenticationFilter.java:89) [BeforeLoginPluginAuthenticationFilter.class:na]
	at com.atlassian.stash.internal.web.auth.BeforeLoginPluginAuthenticationFilter.doFilter(BeforeLoginPluginAuthenticationFilter.java:75) [BeforeLoginPluginAuthenticationFilter.class:na]
	at com.atlassian.stash.internal.request.DefaultRequestManager.doAsRequest(DefaultRequestManager.java:85) [stash-service-impl-3.6.1.jar:na]
	at com.atlassian.stash.internal.hazelcast.ConfigurableWebFilter.doFilter(ConfigurableWebFilter.java:38) [ConfigurableWebFilter.class:na]
	at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1142) [na:1.8.0_31]
	at java.lang.Thread.run(Thread.java:745) [na:1.8.0_31]
	... 290 frames trimmed
Caused by: com.atlassian.crowd.exception.ApplicationPermissionException: Not allowed to delete user 'Username' from directory 'Directory'.
	at com.atlassian.crowd.manager.application.ApplicationServiceGeneric.removeUser(ApplicationServiceGeneric.java:825) ~[crowd-core-2.8.1-m3.jar:na]
	at com.atlassian.crowd.embedded.core.CrowdServiceImpl.removeUser(CrowdServiceImpl.java:496) ~[embedded-crowd-core-2.8.1-m3.jar:na]
	... 24 common frames omitted

Cause

JIRA user management in Stash is "read-only". All user management related tasks can only be done in JIRA not Stash as documented here.

Resolution

Log into your JIRA server as an administrator and delete the user from there.

Last modified on Nov 2, 2018

Was this helpful?

Yes
No
Provide feedback about this article
Powered by Confluence and Scroll Viewport.