Bug #1369
Use 403 reply when operation not allowed
Status: | Closed | Start date: | 09/30/2011 | |
---|---|---|---|---|
Priority: | Medium | Due date: | ||
Assignee: | Antony Chazapis | % Done: | 100% |
|
Category: | Pithos | Spent time: | - | |
Target version: | - |
Description
We currently use 401 - Unauthorized - to respond to not allowed actions.
According to the HTTP protocol this is not correct: http://www.w3.org/Protocols/rfc2616/rfc2616-sec10.html
We should reply with 403 - Forbidden.
Associated revisions
Use 401 error when missing token and 403 when forbidden.
Fixes #1369
Use 401 error when missing token and 403 when forbidden.
Fixes #1369
History
#1 Updated by Antony Chazapis almost 13 years ago
- Target version changed from 0.8.1 to 0.7.9
#2 Updated by Antony Chazapis almost 13 years ago
- Status changed from New to Closed
- % Done changed from 0 to 100
Applied in changeset 297513ba94f542505f7e58529cd4d2d47cd6f531.
#3 Updated by Vangelis Koukis over 11 years ago
- Project changed from Pithos to Synnefo
- Target version deleted (
0.7.9)
#4 Updated by Vangelis Koukis over 11 years ago
- Category set to Pithos