Role name is not required
Bug #997725 reported by
Chris Fattarsi
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
OpenStack Identity (keystone) |
Fix Released
|
Medium
|
Mohammed Naser |
Bug Description
The keystone client requires a name when creating a role, but curling with an empty name field will create a role. The client and the back end should be consistent.
curl -i -X POST -d '{"role":{"name": ""}}' -H 'x-auth-token: this-is-my-token' -H 'Content-type: application/json' http://
HTTP/1.1 200 OK
Content-Type: application/json
Vary: X-Auth-Token
Content-Length: 64
Date: Thu, 10 May 2012 17:35:58 GMT
{"role": {"name": "", "id": "a7873cd5ca6e4a
Changed in keystone: | |
status: | New → Confirmed |
assignee: | nobody → Yaguang Tang (heut2008) |
Changed in keystone: | |
assignee: | Yaguang Tang (heut2008) → nobody |
Changed in keystone: | |
assignee: | nobody → Mohammed Naser (mnaser) |
Changed in keystone: | |
milestone: | none → folsom-1 |
importance: | Undecided → Medium |
Changed in keystone: | |
status: | Fix Committed → Fix Released |
Changed in keystone: | |
milestone: | folsom-1 → 2012.2 |
To post a comment you must log in.
I would like to fix this however can anyone comment from core team on how to perform validation?
It seems that you can create empty usernames, role names and tenants too (can't find any validation).