Connection left open when API SSO authentication fails

Bug #1318530 reported by Michael Nelson on 2014-05-12
This bug affects 1 person
Affects Status Importance Assigned to Milestone
Ratings and Reviews server

Bug Description

We recently had an incident where the reviews server's credentials for the SSO API were invalid, which was fixed, but during the same time-frame, we saw the postgresql server failing due to too many connections. The timing suggests that the open connections were due to the invalid API creds.

The reviews server should terminate the connection and respond with a 401 if the lazr.restfulclient finds it can't authenticate.

More details on RT #70157

description: updated
To post a comment you must log in.
This report contains Public information  Edit
Everyone can see this information.

Other bug subscribers