When using certificate based authentication org_admin is not defined.

[mkanoor]

insights-api-common-rails/lib/insights/api/common/user.rb

Line 16 in bc964c7

is_org_admin

A system user has limited privileges and can do very limited operations.

The payload looks like this

{
  "identity"=>{
    "internal"=>{
      "org_id"=>"1111111",
      "auth_time"=>0
    },
    "account_number"=>"123456",
    "auth_type"=>"cert-auth",
    "system"=>{
      "cn"=>"cafebaba-5999-42b4-8e54-facade70beef"
    },
    "type"=>"System"
  },
  "entitlements"=>{
    "insights"=>{
      "is_entitled"=>true,
      "is_trial"=>false
    },
    "cost_management"=>{
      "is_entitled"=>true,
      "is_trial"=>false
    },
    "ansible"=>{
      "is_entitled"=>true,
      "is_trial"=>false
    },
    "settings"=>{
      "is_entitled"=>true,
      "is_trial"=>false
    },
    "openshift"=>{
      "is_entitled"=>true,
      "is_trial"=>false
    },
    "smart_management"=>{
      "is_entitled"=>true,
      "is_trial"=>false
    },
    "subscriptions"=>{
      "is_entitled"=>true,
      "is_trial"=>false
    },
    "migrations"=>{
      "is_entitled"=>true,
      "is_trial"=>false
    }
  }
}

So any code that tries to check org_admin for a cert based authentication like here will fail.
https://github.com/RedHatInsights/sources-api/blob/7365c17b76fdf937ebcecf60705ba9cf75987824/app/controllers/application_controller.rb#L100

Will raise an exception from here

insights-api-common-rails/lib/insights/api/common/user.rb

Line 37 in bc964c7

raise IdentityError, "#{key} doesn't exist" if result.nil?