/core/tokens/{identifier}/ not found error

[rqi14]

Describe the bug None of app password owned by other users can by accessed by any action using /core/tokens/{identifier}/.

I have given the service account accessing the API the following permissions

UPDATE: I gave the service account permission to impersonate as other users, but when I try to access the impersonate api, it says I don't have permission

authentik Core

  | Token | Can add Token | ✓   | Token | Can change Token | ✓   | Token | Can view Token | ✓   | Token | Can delete Token | ✓   | Token | View token's key | ✓   | User | Can view User | ✓

To Reproduce Use /core/tokens/{identifier}/ to access an app password (not expired atm, not managed by authentik), with any method (get, put, delete...)

Expected behavior Expected to return app password information

Screenshots

Logs authentik-authentik-server-1 | {"auth_via": "api_token", "event": "/api/v3/core/tokens/wifi-qi/", "host": "authentik..com", "level": "info", "logger": "authentik.asgi", "method": "GET", "pid": 128965, "remote": "192.168.5.112", "request_id": "783068228935468da7126f3f34192084", "runtime": 43, "scheme": "https", "status": 404, "timestamp": "2024-01-22T09:53:27.981847", "user": "airflow", "user_agent": "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36 OPR/106.0.0.0"}

Version and Deployment (please complete the following information):

• authentik version: 2023.10.6
• Deployment: docker-compose

Additional context Add any other context about the problem here.

[authentik-automation[bot]]

This issue has been automatically marked as stale because it has not had recent activity. It will be closed if no further activity occurs. Thank you for your contributions.