Comment 7 for bug 1289590
Revision history for this message
| Nathan Buckner (nathan-buckner) wrote Re: [Bug 1289590] Re: SQL Error during update tenant and possibly other calls | #7 |
© 2004
Canonical Ltd.
•
Terms of use
•
Data privacy
•
Contact Launchpad Support
•
Blog
•
Careers
•
System status
•
35a32c5
(Get the code!)
This bug is a year and a half old and was made before XML support was dropped from Keystone.(Kilo 2015.1.0). Thus you can't reproduce it unless you are on an older version of keystone.
_______
From: <email address hidden> <email address hidden> on behalf of Kent Wang <email address hidden>
Sent: Wednesday, November 4, 2015 10:21 AM
To: Nathan Buckner
Subject: [Bug 1289590] Re: SQL Error during update tenant and possibly other calls
Hi I'm having trouble reproducing this bug
When I try:
$ curl $TOKEN -X PUT localhost:
<description test=""
</tenant>'
The error response I get:
{
"error": {
"code": 400,
"message": "Expecting to find application/json in Content-Type header - the server could not comply with the request since it is either malformed or otherwise incorrect. The client is assumed to be in error.",
"title": "Bad Request"
}
}
--
You received this bug notification because you are subscribed to the bug
report.
https:/
Title:
SQL Error during update tenant and possibly other calls
Status in OpenStack Identity (keystone):
Triaged
Bug description:
Attributes in the description cause sql error and 500. Possible injection.
PUT /v2.0/tenants/
Host: <not shown>:35357
X-Auth-Token: <not shown>
Content-Type: application/xml
Accept-Encoding: gzip, deflate, compress
Accept: application/xml
User-Agent: python-
Content-Length: 245
<tenant enabled="false" name="ACME corp" id="1234556">
<description test=""
</tenant>
Response
HTTP/1.1 500 Internal Server Error
Vary: X-Auth-Token
Content-Type: application/xml
Content-Length: 536
Date: Fri, 07 Mar 2014 21:16:52 GMT
<?xml version="1.0" encoding="UTF-8"?>
<error xmlns="http://
To manage notifications about this bug go to:
https:/