Ondřej Macháček has posted comments on this change. Change subject: mla: deny access to specific ID for users in user level API ......................................................................
Patch Set 3: Verified+1 Verfied locally. [ondra@dhcp131-169 test]$ curl -k -X GET -H "Accept: application/xml" -H "Content-Type: application/xml" -H "Filter: True" -u admin@internal:123456 http://localhost:8080/api/users/fdfc627c-d875-11e0-90f0-83df133b58cc <?xml version="1.0" encoding="UTF-8" standalone="yes"?> <user href="/api/users/fdfc627c-d875-11e0-90f0-83df133b58cc" id="fdfc627c-d875-11e0-90f0-83df133b58cc"> <name>admin</name> <link href="/api/users/fdfc627c-d875-11e0-90f0-83df133b58cc/permissions" rel="permissions"/> <link href="/api/users/fdfc627c-d875-11e0-90f0-83df133b58cc/roles" rel="roles"/> <link href="/api/users/fdfc627c-d875-11e0-90f0-83df133b58cc/tags" rel="tags"/> <domain href="/api/domains/696e7465-726e-616c-696e-7465726e616c" id="696e7465-726e-616c-696e-7465726e616c"/> <domain_entry_id>66646663363237632D643837352D313165302D393066302D383364663133336235386363</domain_entry_id> <namespace>*</namespace> <user_name>admin@internal</user_name> <principal>admin</principal> </user> [ondra@dhcp131-169 ~]$ psql -U engine -d engine -c "delete from permissions where id = '00000003-0003-0003-0003-000000000382';" [ondra@dhcp131-169 test]$ curl -k -X GET -H "Accept: application/xml" -H "Content-Type: application/xml" -H "Filter: True" -u admin@internal:123456 http://localhost:8080/api/users/fdfc627c-d875-11e0-90f0-83df133b58cc <html><head><title>JBoss Web/7.0.13.Final - Error report</title><style><!--H1 {font-family:Tahoma,Arial,sans-serif;color:white;background-color:#525D76;font-size:22px;} H2 {font-family:Tahoma,Arial,sans-serif;color:white;background-color:#525D76;font-size:16px;} H3 {font-family:Tahoma,Arial,sans-serif;color:white;background-color:#525D76;font-size:14px;} BODY {font-family:Tahoma,Arial,sans-serif;color:black;background-color:white;} B {font-family:Tahoma,Arial,sans-serif;color:white;background-color:#525D76;} P {font-family:Tahoma,Arial,sans-serif;background:white;color:black;font-size:12px;}A {color : black;}A.name {color : black;}HR {color : #525D76;}--></style> </head><body><h1>HTTP Status 404 - </h1><HR size="1" noshade="noshade"><p><b>type</b> Status report</p><p><b>message</b> <u></u></p><p><b>description</b> <u>The requested resource () is not available.</u></p><HR size="1" noshade="noshade"><h3>JBoss Web/7.0.13.Final</h3></body></html>[ondra@dhcp131-169 test]$ -- To view, visit http://gerrit.ovirt.org/34803 To unsubscribe, visit http://gerrit.ovirt.org/settings Gerrit-MessageType: comment Gerrit-Change-Id: I90ec94fd0194680548e159f5d9bc010f5c233b91 Gerrit-PatchSet: 3 Gerrit-Project: ovirt-engine Gerrit-Branch: master Gerrit-Owner: Ondřej Macháček <machacek.on...@gmail.com> Gerrit-Reviewer: Ondřej Macháček <machacek.on...@gmail.com> Gerrit-Reviewer: Oved Ourfali <oourf...@redhat.com> Gerrit-Reviewer: automat...@ovirt.org Gerrit-Reviewer: oVirt Jenkins CI Server Gerrit-HasComments: No _______________________________________________ Engine-patches mailing list Engine-patches@ovirt.org http://lists.ovirt.org/mailman/listinfo/engine-patches
