Uploaded image for project: 'DataWolf'
  1. DataWolf
  2. WOLF-255

Login endpoint not returning unauthorized exception for incorrect login

    XMLWordPrintableJSON

    Details

    • Type: Bug
    • Status: Done
    • Priority: Normal
    • Resolution: Fixed
    • Affects Version/s: 4.2
    • Fix Version/s: 4.2
    • Component/s: Core
    • Labels:
      None

      Description

      /login endpoint should return unauthorized exception or internal server error for incorrect user/pass. Returning null returns a 204 (no content) which appears successful. A recent change to allow /login through the AuthInterceptor to remove the redundant user/pass check inside login resource exposed this. The user is not logged in (no auth token is returned), but it appears the user login was a success.

        Gliffy Diagrams

          Attachments

            Activity

              People

              • Assignee:
                cnavarro Christopher Navarro
                Reporter:
                cnavarro Christopher Navarro
              • Votes:
                0 Vote for this issue
                Watchers:
                1 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved:

                  Time Tracking

                  Estimated:
                  Original Estimate - 1 hour
                  1h
                  Remaining:
                  Time Spent - 30 minutes Remaining Estimate - 30 minutes
                  30m
                  Logged:
                  Time Spent - 30 minutes Remaining Estimate - 30 minutes
                  30m

                    Tasks

                    Progress: 
                     0/0