OpenStack Identity (keystone)

check the url format when create endpoint

Bug #1284430 reported by wanghong on 2014-02-25

This bug affects 2 people

Affects		Status	Importance	Assigned to	Milestone
	OpenStack Identity (keystone)	Fix Released	Low	Lance Bragstad	OpenStack Identity (keystone) 2014.2 "juno"

Bug Description

Currently, the url allows any parameters when create endpoint, such as:
curl -i -H "X-Auth-Token:admin" -H "Content-Type:application/json" http://127.0.0.1:35357/v3/endpoints -d '{"endpoint":{"interface":"test","service_id":"d893b85ae4f842d5bb1727e271cf5be3","url":"111"}}'

HTTP/1.1 201 Created
Vary: X-Auth-Token
Content-Type: application/json
Content-Length: 252
Date: Tue, 25 Feb 2014 03:13:30 GMT

{"endpoint": {"links": {"self": "http://192.168.70.108:5000/v3/endpoints/81638ad18b9e4495aac576c006c1fed1"}, "url": "111", "region": null, "interface": "test", "service_id": "d893b85ae4f842d5bb1727e271cf5be3", "id": "81638ad18b9e4495aac576c006c1fed1"}}

Should we add a check that the url parameter must be url format like?

wanghong (w-wanghong) on 2014-02-25

Changed in keystone:
assignee:	nobody → wanghong (w-wanghong)

Marcos Lobo (marcos-fermin-lobo) on 2014-05-12

Changed in keystone:
status:	New → Confirmed

Marcos Lobo (marcos-fermin-lobo) on 2014-05-13

Changed in keystone:
assignee:	wanghong (w-wanghong) → Marcos Lobo (marcos-fermin-lobo)

Revision history for this message

OpenStack Infra (hudson-openstack) wrote on 2014-05-13: Fix proposed to keystone (master)

Fix proposed to branch: master
Review: https://review.openstack.org/93426

Changed in keystone:
status:	Confirmed → In Progress

Marcos Lobo (marcos-fermin-lobo) on 2014-05-16

no longer affects:

python-openstackclient

Revision history for this message

OpenStack Infra (hudson-openstack) wrote on 2014-08-26: Change abandoned on keystone (master)

Change abandoned by Marcos Fermín Lobo (<email address hidden>) on branch: master
Review: https://review.openstack.org/93426
Reason: We are working in a better solution here https://review.openstack.org/#/c/96266/

OpenStack Infra (hudson-openstack) on 2014-08-26

Changed in keystone:
assignee:	Marcos Lobo (marcos-fermin-lobo) → Lance Bragstad (lbragstad)

OpenStack Infra (hudson-openstack) on 2014-08-29

Changed in keystone:
assignee:	Lance Bragstad (lbragstad) → Dolph Mathews (dolph)

OpenStack Infra (hudson-openstack) on 2014-08-31

Changed in keystone:
assignee:	Dolph Mathews (dolph) → Lance Bragstad (lbragstad)

Revision history for this message

OpenStack Infra (hudson-openstack) wrote on 2014-09-02: Fix merged to keystone (master)

Reviewed: https://review.openstack.org/96266
Committed: https://git.openstack.org/cgit/openstack/keystone/commit/?id=8ef267c3ee3f0f1e6bdb74da7ed68aeb958e5567
Submitter: Jenkins
Branch: master

commit 8ef267c3ee3f0f1e6bdb74da7ed68aeb958e5567
Author: Lance Bragstad <email address hidden>
Date: Wed Jul 23 19:41:37 2014 +0000

Implement validation on the Catalog V3 API

    Use JSONSchema to validate CRUD operations on V3 Catalog resources. This
    includes wrapping the create and update methods for Regions, Services,
    and Endpoints. This change removes functionality specific to the Catalog
    API for validating parameters for incoming requests.

    Closes-Bug: #1284430
    bp: api-validation
    Change-Id: If8b665ffb0ed22a3f060254786fe1feaf0b78318

Changed in keystone:
status:	In Progress → Fix Committed

Thierry Carrez (ttx) on 2014-09-04

Changed in keystone:
milestone:	none → juno-3
status:	Fix Committed → Fix Released

Dolph Mathews (dolph) on 2014-09-29

Changed in keystone:
importance:	Undecided → Low

Thierry Carrez (ttx) on 2014-10-16

Changed in keystone:
milestone:	juno-3 → 2014.2

Report a bug

This report contains Public information

Everyone can see this information.

You are

Subscribing...

Edit bug mail

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.