[
https://issues.apache.org/jira/browse/RANGER-3883?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Madhan Neethiraj resolved RANGER-3883.
--------------------------------------
Fix Version/s: 3.0.0
2.4.0
Resolution: Fixed
[~ramackri] - thank you for the fix. The patch has been merged in master and
ranger-2.4 branches.
{noformat}
commit d1fd921e419c469d3b02e96ae9a5c4d1081cd15a (HEAD -> master, origin/master,
origin/HEAD)
Author: Ramachandran Krishnan <[email protected]>
Date: Tue Nov 29 17:23:33 2022 +0530
RANGER-3883: updated REST APIs to validate id/userId path parameter
Signed-off-by: Madhan Neethiraj <[email protected]>
{noformat}
{noformat}
commit 556675a15a0b99d871d5668e08a109a1b04429b7 (HEAD -> ranger-2.4,
origin/ranger-2.4)
Author: Ramachandran Krishnan <[email protected]>
Date: Tue Nov 29 17:23:33 2022 +0530
RANGER-3883: updated REST APIs to validate id/userId path parameter
Signed-off-by: Madhan Neethiraj <[email protected]>
(cherry picked from commit d1fd921e419c469d3b02e96ae9a5c4d1081cd15a)
{noformat}
> emailchange and passwordchange User REST API's work even when invalid user id
> is used in the url
> ------------------------------------------------------------------------------------------------
>
> Key: RANGER-3883
> URL: https://issues.apache.org/jira/browse/RANGER-3883
> Project: Ranger
> Issue Type: Bug
> Components: Ranger
> Reporter: Abhishek
> Assignee: Ramachandran
> Priority: Major
> Fix For: 3.0.0, 2.4.0
>
> Attachments:
> 0001-RANGER-3883-When-a-POST-request-is-made-to-the-follo.patch
>
>
> When a POST request is made to the following APIs return 200 status code even
> when the userId is invalid .
> # {RANGER_ADMIN_URL}/service/users/\{USER_ID}/passwordchange
> # \{RANGER_ADMIN_URL}/service/users/\{USER_ID}/emailchange
> Ideally, the API's must return 404 not found when using an invalid userid in
> the url,
> but in the case of the aforementioned APIs, POST request results in status
> code 200.
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
