Uploaded image for project: 'DataWolf'
  1. DataWolf
  2. WOLF-255

Login endpoint not returning unauthorized exception for incorrect login

    XMLWordPrintableJSON

    Details

    • Type: Bug
    • Status: Done
    • Priority: Normal
    • Resolution: Fixed
    • Affects Version/s: 4.2
    • Fix Version/s: 4.2
    • Component/s: Core
    • Labels:
      None

      Description

      /login endpoint should return unauthorized exception or internal server error for incorrect user/pass. Returning null returns a 204 (no content) which appears successful. A recent change to allow /login through the AuthInterceptor to remove the redundant user/pass check inside login resource exposed this. The user is not logged in (no auth token is returned), but it appears the user login was a success.

        Gliffy Diagrams

          Attachments

            Activity

              People

              Assignee:
              cnavarro Christopher Navarro
              Reporter:
              cnavarro Christopher Navarro
              Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

                Dates

                Created:
                Updated:
                Resolved:

                  Time Tracking

                  Estimated:
                  Original Estimate - 1 hour
                  1h
                  Remaining:
                  Time Spent - 30 minutes Remaining Estimate - 30 minutes
                  30m
                  Logged:
                  Time Spent - 30 minutes Remaining Estimate - 30 minutes
                  30m

                    Tasks

                    Progress: 
                     0/0