When user not in WS allowed user group, should return 403 Forbidden instead of 500 Internal Server Error

XMLWordPrintable

    • Type: Improvement
    • Resolution: Unresolved
    • Priority: Minor
    • None
    • Affects Version/s: 2.4.0, 2.4.0.patch, 2.5.0
    • Component/s: WS
    • None

      When a user is not in the group set by ws.client.user.group.name, the response is 500 Internal Server Error. There isn't really an error, rather the user is forbidden. So the return code should be 403 Forbidden, so it can be distinguished from other kinds of errors.

      (Commit a3bfcc44, affects Grouper 1.3+)

            Assignee:
            Chris Hyzer (upenn.edu)
            Reporter:
            Chad Redman (unc.edu) (Inactive)
            Votes:
            1 Vote for this issue
            Watchers:
            1 Start watching this issue

              Created:
              Updated: