Lack of advanced validation for PATCH request
Bug #1223847 reported by
Roman Prykhodchenko
This bug affects 2 people
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
Ironic |
Fix Released
|
High
|
Lucas Alvares Gomes |
Bug Description
Currently there's only a basic validation for PATCH requests which is the same for all resources.
In order to guarantee a fool-proof performance and better security it's better to provide resource-specific advanced validation of JSON patches.
We should find a way to do that automatically, i.e., by using Pecan hooks or similar tools.
Changed in ironic: | |
status: | New → Triaged |
importance: | Medium → High |
Changed in ironic: | |
assignee: | nobody → Lucas Alvares Gomes (lucasagomes) |
status: | Triaged → In Progress |
Changed in ironic: | |
milestone: | none → icehouse-2 |
status: | Fix Committed → Fix Released |
Changed in ironic: | |
milestone: | icehouse-2 → 2014.1 |
To post a comment you must log in.
Reviewed: https:/ /review. openstack. org/48656 github. com/openstack/ ironic/ commit/ 3d54732d24f994c 2a9aa8a23481449 5d7f6d9ffc
Committed: http://
Submitter: Jenkins
Branch: master
commit 3d54732d24f994c 2a9aa8a23481449 5d7f6d9ffc
Author: Lucas Alvares Gomes <email address hidden>
Date: Thu Sep 26 16:41:20 2013 +0100
Check for required fields on ports
Currently the API on ports does not check for any required fields,
this patch add such verifications + tests.
Change-Id: I4a2003c3a5ab0a 0b31742fcac119f be20929f636
Partial-Bug: #1223847