Adding additional URI throws error

synertekcs · July 29, 2025, 9:22pm

Running the self-hosted community edition. I enabled all the new metadata stuff but when I tried to add an additional URI to a credential that was shared with a group I got the following:

{ “code”: 400, “body”: { “metadata_key_type”: { “isMetadataKeyTypeSharedOnSharedItem”: “A resource of type personal cannot be shared with other users or a group.” } } }

When I remove the share and only myself as owner, I am able to modify the records.

It’s confusing because I don’t have an option to create a “shared folder” or anything except folders in “My Workspace”

antony · July 30, 2025, 5:58am

Hello @synertekcs, welcome to the forum in order for us to reproduce the issues in the same context, we would need more information. Since some of them might be considered sensitive, can you please email us at support@passbolt.com:

The full output of the status report
- sudo su -s /bin/bash -c “/usr/share/php/passbolt/bin/status-report” www-data
  - If you are on a RPM distribution please replace www-data with nginx
  - If you are on Docker, please run docker compose -f docker-compose-ce.yaml exec -ti passbolt su -s /bin/bash -c “source /etc/environment && /usr/share/php/passbolt/bin/status-report” www-data instead.
The server logs that should be located in /var/log/passbolt/error.log or in the docker logs if you are using Docker.
Screenshots of all the settings regarding Metadata
When did you enabled metadata?

Thanks in advance.

Best regards,

Joshua2504 · August 29, 2025, 9:51am

Having the exact same issue. Self-hosted docker CE.

Web:

{
    "code": 400,
    "body": {
        "metadata_key_type": {
            "isMetadataKeyTypeSharedOnSharedItem": "A resource of type personal cannot be shared with other users or a group."
        }
    }
}

Docker:

2025-08-29 09:49:54 error: [App\Error\Exception\ValidationException] Could not validate resource data. in /usr/share/php/passbolt/src/Service/Resources/ResourcesUpdateService.php on line 270

Help me fix this and we will use Passbolt in our organization.

Maokaman1 · September 10, 2025, 4:28pm

Here’s one scenario that reproduces the issue:

Create a secret that is shared only with yourself (the default behavior for a new secret).
Share that secret with a group (or multiple groups) where you are the sole member.

This results in the error: “A resource of type personal cannot be shared with other users or a group” when attempting to save changes to the secret.

gyaresu · September 11, 2025, 1:51am

Hey Maokaman1

I couldn’t replicate the error. Can you see anything I did differently to your workflow?

I spun up a default CE docker instance. (Server v5.4.1 / Client v5.4.1)
Created default admin user ‘ada’
Created group ‘test’ with user ada
Created password with user ada
Shared password with group ‘test’

Screenshot 2025-09-11 at 11.47.341256×705 48.5 KB

Screenshot 2025-09-11 at 11.47.401302×533 41.3 KB

Let me know.
Cheers
Gareth

Maokaman1 · September 11, 2025, 8:14am

Hey Gareth,

After that, have you tried modifying the resource itself (any field) and saving it?

My setup is a bit different though - I’m running a manual install (current Passbolt version from git) on Archlinux with postgresql as RDBMS. Only v2 resources are allowed.

mysh38 · September 11, 2025, 1:10pm

Hello there!

Got the same issue. The way i encountered the problem:

Created folder “Devices” in “My workspace”
Created Group “L3-1”
Added new password “Pass1” in “Devices”
Shared “Devices” with Group “L3-1”
Changed something in “Pass1“
Pressed Save
Got an error:

{
    "code": 400,
    "body": {
        "metadata_key_type": {
            "isMetadataKeyTypeSharedOnSharedItem": "A resource of type personal cannot be shared with other users or groups."
        }
    }
}

By “changed something” I mean I’ve tested one by one: name, URI, username, password, icon and color.

When I create a new password “Pass2” in “Devices” after sharing this folder and try to modify the “Pass2” I’m getting the same error. So there is no difference in order of creating/sharing

The way to avoid is mentioned by OP and works in my environment (removing share and editing)

My installation (server and client v.5.4.1) was made by this instruction and self-signed cert by corp CA: https://www.passbolt.com/docs/hosting/install/ce/ubuntu/

Ready to provide more info, logs etc.

p.s.
I use non-english localization but tried to translate error message correctly

Emajeru · October 9, 2025, 7:08pm

Experiencing the exact same issue on 5.6.0-1-ce. Remediation steps function as written but not a permanent fix.

gyaresu · October 10, 2025, 5:30am

G’day Emajeru, and sorry folks for not following up on this thread.

Do you get any logs from the server or the browser console that you can share?

I’ll try and schedule some time next week to try and reproduce, which we need to figure out where the bug is occuring.

Cheers
Gareth

gyaresu · October 23, 2025, 9:20pm

Hi folks.
My colleagues have identified and reproduced the issue.

This issue occurs when a resource is shared with a group where the user is the only member. In certain cases, the resource is considered personal, which is true from a cryptographic perspective but incorrect from the permission system’s point of view. We need to update the resource update service so that it encrypts with the user’s personal key only if the resource is shared exclusively with that user from a permissions standpoint.

The task is PB-46065 and it’s been added to the next sprint.
cheers
Gareth

MahrezBH · November 7, 2025, 1:35pm

Hi,
For me, I remove the sharing, then it works, after that I share it again