Comment 3 for bug 1789499

Revision history for this message
Lajos Katona (lajos-katona) wrote :

I read some code for this problem:

# when listing resources it is possible that some items are restricted for the given user, but others are not (imagine network list, where there is the shared flag as well)
# so neutron server creates an empty list then
# go through the list of resources and check it against the policy and
# if it passes the policy check, append to the list, otherwise not.
# If all items on the list of resources failed the policy check an empty list will be returned, and from API point of view no error happened, so http200 will presented to the user, with an empty list in the body.
And it is hard to make a difference between "empty because there were no items to list" and "empty because the user has no right to see the list".

I check it to see if we can give the user some feedback, and let's see what others will think about it.