7278cec23e
When a user is prevented from listing a non-public share, the API service would return a 403 Forbidden. This isn't consistent with the API SIG's guidance on resources restricted by virtue of RBAC policy since users with malicious intent may use the signal to mean that the resource exists. Depends-On: I27fdd7dfffeb15965b66dbb3f6b1568c11ff9ad4 Change-Id: I7e05dcb343c932cc7fec8d395919053d0a1801ce Closes-Bug: #1901210 Signed-off-by: Goutham Pacha Ravi <gouthampravi@gmail.com> (cherry picked from commit |
||
---|---|---|
.. | ||
notes | ||
source |