Uploaded image for project: 'Grouper'
  1. Grouper
  2. GRP-3557

When user not in WS allowed user group, should return 403 Forbidden instead of 500 Internal Server Error

    XMLWordPrintable

Details

    • Improvement
    • Resolution: Unresolved
    • Minor
    • None
    • 2.4.0, 2.4.0.patch, 2.5.0
    • WS
    • None

    Description

      When a user is not in the group set by ws.client.user.group.name, the response is 500 Internal Server Error. There isn't really an error, rather the user is forbidden. So the return code should be 403 Forbidden, so it can be distinguished from other kinds of errors.

      (Commit a3bfcc44, affects Grouper 1.3+)

      Attachments

        Activity

          People

            chris.hyzer@at.internet2.edu Chris Hyzer (upenn.edu)
            chad.redman@at.internet2.edu Chad Redman (unc.edu)
            Votes:
            1 Vote for this issue
            Watchers:
            1 Start watching this issue

            Dates

              Created:
              Updated: