Comment 0 for bug 1482330
Revision history for this message
| Henry Nash (henry-nash) wrote Creating a user/group without a domain should raise an exception | #0 |
© 2004
Canonical Ltd.
•
Terms of use
•
Data privacy
•
Contact Launchpad Support
•
Blog
•
Careers
•
System status
•
1b1ed1a
(Get the code!)
According to the API spec, you must supply a domain for a user, group or project on create. You can do this either by specifying it explicitly in the object or by using a domain scoped token. Although the spec doesn't say this explicitly, one would expect an exception to be raised if you don't do either the these (e.g. try using a project scoped token). However, due to a long fixed bug (1283539) in a heat tempest, we actually fall back and try and use the default domain (which may still fail of course if you don't have a role on the default domain).
This fall back is neither in the spec nor is it sensible in the long run. We should raise a ValidationError in the situation when no domain is specified.
The only one concern I have is whether someone might have discovered this fall back in the field....and so there is an argument as to whether we should add deprecation warning if we detect this situation for a cycle?