OpenStack Identity (keystone)

The absence of 'X-Subject-Token' header for token validation/revocation should result in 400 (bad request)

Bug #1240170 reported by Guang Yee on 2013-10-15

This bug affects 1 person

Affects		Status	Importance	Assigned to	Milestone
	OpenStack Identity (keystone)	Invalid	Medium	Guang Yee

Bug Description

The absence of 'X-Subject-Token' header for V3 token validation/revocation should constitute a 400 (bad request) instead of 403 or 404. Keystone currently returns 403 or 404 depending on X-Auth-Token permission.

Guang Yee (guang-yee) on 2013-10-15

Changed in keystone:
assignee:	nobody → Guang Yee (guang-yee)

Dolph Mathews (dolph) on 2013-10-15

Changed in keystone:
importance:	Undecided → Medium
tags:	added: grizzly-backport-potential havana-backport-potential

Dolph Mathews (dolph) on 2013-12-10

Changed in keystone:
status:	New → Invalid
tags:	removed: grizzly-backport-potential havana-backport-potential

Revision history for this message

Guang Yee (guang-yee) wrote on 2013-12-10:

Dolph, why is this invalid? Isn't missing information constitutes bad request?

Report a bug

This report contains Public information

Everyone can see this information.

You are

Subscribing...

Edit bug mail

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.