OpenStack Identity (keystone)

Incorrect HTTP response for POST /v2.0/tokens scenarios

Bug #1060723 reported by Rohit Karajgi
12
This bug affects 1 person
Affects Status Importance Assigned to Milestone
OpenStack Identity (keystone)
Fix Released
Undecided
Unmesh Gurjar
OpenStack Identity (keystone) 2013.1 "grizzly"

Bug Description

Keystone returns HTTP 401 Not Authorized when it should return 400 Bad Request for the below use case:

{
    "auth": {
          "passwordCredentials": {
                    "password": "pass" # Do not pass username or password Key or both (blank dict for for passwordCredentials)
           },
           "tenantName": "demo"
     }
}
Actual response: 401 Not Authorized
Expected response: 400 Bad Request

Tags: ntt
Unmesh Gurjar (unmesh-gurjar)
Changed in keystone:
assignee: nobody → Unmesh Gurjar (unmesh-gurjar)
Revision history for this message
OpenStack Infra (hudson-openstack) wrote : Fix proposed to keystone (master)

Fix proposed to branch: master
Review: https://review.openstack.org/14328

Changed in keystone:
status: New → In Progress
Revision history for this message
OpenStack Infra (hudson-openstack) wrote : Fix merged to keystone (master)

Reviewed: https://review.openstack.org/14328
Committed: http://github.com/openstack/keystone/commit/7ac4d521103afa80c8f69c6b214a227c6a9346e3
Submitter: Jenkins
Branch: master

commit 7ac4d521103afa80c8f69c6b214a227c6a9346e3
Author: Unmesh Gurjar <email address hidden>
Date: Thu Oct 11 03:49:28 2012 -0700

    Fixes response for missing credentials in auth

    1. If username or password parameters are not specified in the authentication
    request, API returns 401 response. Fixed this to return a 400 Bad Request
    instead.
    2. Also added unit test coverage.

    Fixes LP: #1060723

    Change-Id: I4861d5b989a151d8fce20f012bb0878b06b9b559

Changed in keystone:
status: In Progress → Fix Committed
Thierry Carrez (ttx)
Changed in keystone:
milestone: none → grizzly-1
status: Fix Committed → Fix Released
Thierry Carrez (ttx)
Changed in keystone:
milestone: grizzly-1 → 2013.1
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.