manila

History

Goutham Pacha Ravi 7278cec23e [RBAC] Return 404 if share is inaccessible When a user is prevented from listing a non-public share, the API service would return a 403 Forbidden. This isn't consistent with the API SIG's guidance on resources restricted by virtue of RBAC policy since users with malicious intent may use the signal to mean that the resource exists. Depends-On: I27fdd7dfffeb15965b66dbb3f6b1568c11ff9ad4 Change-Id: I7e05dcb343c932cc7fec8d395919053d0a1801ce Closes-Bug: #1901210 Signed-off-by: Goutham Pacha Ravi <gouthampravi@gmail.com> (cherry picked from commit `6303741be2`) (cherry picked from commit `078bc4300a`) (cherry picked from commit `dfb4e7ee93`) (cherry picked from commit `5b8b7b19fd`) (cherry picked from commit `2e420aa5b7`) (cherry picked from commit `db7c482741`) (cherry picked from commit `256ebc2d68`)	2022-09-27 05:41:19 +00:00
..
notes	[RBAC] Return 404 if share is inaccessible	2022-09-27 05:41:19 +00:00
source	Bump the openstackdocstheme extension to 1.20	2019-07-01 15:30:47 +08:00

Goutham Pacha Ravi 7278cec23e [RBAC] Return 404 if share is inaccessible

When a user is prevented from listing a non-public
share, the API service would return a 403 Forbidden.
This isn't consistent with the API SIG's guidance
on resources restricted by virtue of RBAC policy since
users with malicious intent may use the signal to
mean that the resource exists.

Depends-On: I27fdd7dfffeb15965b66dbb3f6b1568c11ff9ad4
Change-Id: I7e05dcb343c932cc7fec8d395919053d0a1801ce
Closes-Bug: #1901210
Signed-off-by: Goutham Pacha Ravi <gouthampravi@gmail.com>
(cherry picked from commit 6303741be2)
(cherry picked from commit 078bc4300a)
(cherry picked from commit dfb4e7ee93)
(cherry picked from commit 5b8b7b19fd)
(cherry picked from commit 2e420aa5b7)
(cherry picked from commit db7c482741)
(cherry picked from commit 256ebc2d68)

2022-09-27 05:41:19 +00:00

notes [RBAC] Return 404 if share is inaccessible 2022-09-27 05:41:19 +00:00

source Bump the openstackdocstheme extension to 1.20 2019-07-01 15:30:47 +08:00