masakari

Incorrect response returned for invalid Accept header

Bug #1714416 reported by Niraj Singh on 2017-09-01

This bug affects 1 person

	Status	Importance	Assigned to
Cinder	Won't Fix	Undecided	Niraj Singh
Glance	Invalid	Undecided	Niraj Singh
OpenStack Compute (nova)	Won't Fix	Undecided	Unassigned
OpenStack Heat	Won't Fix	Undecided	Unassigned
OpenStack Identity (keystone)	Won't Fix	Undecided	Unassigned
masakari	Won't Fix	Undecided	Unassigned
neutron	Won't Fix	Undecided	Unassigned

Bug Description

As of now, when user passes 'Accept' header in request other than JSON and XML using curl command then it returns 200 OK response with json format data.

In api-ref guide [1] also it's not clearly mentioned about what response it should return if invalid value for 'Accept' header is specified. IMO instead of 'HTTP 200 OK' it should return 'HTTP 406 Not Acceptable' response.

Steps to reproduce:

Request:
curl -g -i -X GET http://controller/volume/v2/c72e66cc4f1341f381e0c2eb7b28b443/volumes/detail -H "User-Agent: python-cinderclient" -H "Accept: application/abc" -H "X-Auth-Token: cd85aff745ce4dc0a04f686b52cf7e4f"

Response:
HTTP/1.1 200 OK
Date: Thu, 31 Aug 2017 07:12:18 GMT
Server: Apache/2.4.18 (Ubuntu)
x-compute-request-id: req-ab48db9d-f869-4eb4-95f9-ef8e90a918df
Content-Type: application/json
Content-Length: 2681
x-openstack-request-id: req-ab48db9d-f869-4eb4-95f9-ef8e90a918df
Connection: close

[1] https://developer.openstack.org/api-ref/block-storage/v2/#list-volumes-with-details

Tags:

Niraj Singh (nirajsingh) on 2017-09-01

Changed in cinder:
assignee:	nobody → Niraj Singh (nirajsingh)
Changed in glance:
assignee:	nobody → Niraj Singh (nirajsingh)

Revision history for this message

Chris Dent (cdent) wrote on 2017-09-01:

I generally agree that this is bad behavior and it would be nice if 406 were the response.

However, this isn't violating the HTTP 1.1 RFCs. https://tools.ietf.org/html/rfc7231#section-5.3.2 says:

"If the header field is
present in a request and none of the available representations for
the response have a media type that is listed as acceptable, the
origin server can either honor the header field by sending a 406 (Not
Acceptable) response or disregard the header field by treating the
response as if it is not subject to content negotiation."

As far as I'm aware very very few (if any) openstack services do content negotiation. They only return JSON. Given that, it is acceptable (ha!) for the header to be disregarded if that's what people choose.

Revision history for this message

Sean McGinnis (sean-mcginnis) wrote on 2017-09-04:

Further discussion was here:

http://lists.openstack.org/pipermail/openstack-dev/2017-September/121778.html

I do agree with the consensus there. Worth having the discussion and increasing the visibility with this bug, but at least for Cinder I am going to mark this as Won't Fix unless there is a more compelling argument to change it. Thanks for bringing it up.

Changed in cinder:
status:	New → Won't Fix

Takashi Natsume (natsume-takashi) on 2017-09-05

tags:

added: api

SamP (sampath-priyankara) on 2017-09-05

Changed in masakari:
status:	New → Won't Fix

Sean Dague (sdague) on 2017-09-05

Changed in nova:
status:	New → Won't Fix

Revision history for this message

Brian Rosmaita (brian-rosmaita) wrote on 2017-09-06:

Glance is behaving within acceptable parameters of RFC 7231 ("HTTP/1.1 Semantics and Content") on this [0].

If we suddenly begin enforcing this, we're likely to break currently working clients who specify "Accept: aplication/json". On one hand, it's their fault for having a typo, but on the other hand, it's not clear to me what we gain by enforcing the 406. I think we want to err on the side of backward compatibility.

[0] https://tools.ietf.org/html/rfc7231#section-5.3.2 (see the fifth paragraph counting backwards from the end of the section)

Changed in glance:
status:	New → Invalid

Rico Lin (rico-lin) on 2017-09-08

Changed in heat:
status:	New → Won't Fix

Revision history for this message

Lance Bragstad (lbragstad) wrote on 2017-10-03:

Keystone will require some sort of versioning change in order to fix this (e.g. microverions).

Changed in keystone:
status:	New → Won't Fix

Brian Haley (brian-haley) on 2023-01-20

Changed in neutron:
status:	New → Won't Fix

Report a bug

This report contains Public information

Everyone can see this information.

You are

Subscribing...

Edit bug mail

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.