Actions
Bug #26852
open
Rest API Error 500 when not authorized
Pull Request:
Severity:
UX impact:
User visibility:
Effort required:
Priority:
0
Name check:
To do
Fix check:
Checked
Regression:
No
Description
API should send a 403 error instead of 500 error when the api does not the rights to access this api
error message example:
{
"action": "getTokenFeatureStatus",
"result": "error",
"errorDetails": "Authorization error: User 'deployer_read_user' is not allowed to access GET secure/api/user/api/token/status"
}
Files
Updated by Vincent MEMBRÉ 5 days ago
- Status changed from New to In progress
- Assignee set to Vincent MEMBRÉ
Updated by Vincent MEMBRÉ 5 days ago
- Status changed from In progress to Pending technical review
- Assignee changed from Vincent MEMBRÉ to François ARMAND
- Pull Request set to https://github.com/Normation/rudder/pull/6348
Updated by Anonymous 3 days ago
- Status changed from Pending technical review to Pending release
Applied in changeset rudder|1f36b4a6234ebd4e8c0c7c6311af7b9b60fa805b.
Updated by Clark ANDRIANASOLO about 14 hours ago
- File clipboard-202505051051-yyupw.png clipboard-202505051051-yyupw.png added
- Fix check changed from To do to Checked
fixed with a 403 return code : 
Actions