Analytics RBAC: Need to raise 403 rather than 401 if user doesnt have valid perms
Affects | Status | Importance | Assigned to | Milestone | ||
---|---|---|---|---|---|---|
Juniper Openstack | Status tracked in Trunk | |||||
R4.1 |
Fix Committed
|
Critical
|
Jack Jonnalagadda | |||
Trunk |
Fix Committed
|
Critical
|
Jack Jonnalagadda |
Bug Description
We need to raise 403 rather than 401 when user doesnt have valid perms to access an object.
Since analytics raises 401 webUI logs out the user.
The member user isnt able to use security dashboard due to the same.
11/28/2017 04:10:03 PM - error: URL [http://
11/28/2017 04:10:03 PM - error: Error Run Query: REST Server Error: Authentication required
at APIServer.
at Request.<anonymous> (/usr/src/
at Request.emit (events.js:98:17)
at Request.
at /usr/lib64/
at IncomingMessage
at Request.
at /usr/lib64/
at Request.
at IncomingMessage
tags: | added: releasenote |
Review in progress for https:/ /review. opencontrail. org/40249
Submitter: Jack Jonnalagadda (<email address hidden>)