[
https://issues.apache.org/jira/browse/SLING-4413?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14318050#comment-14318050
]
Ian Boston commented on SLING-4413:
-----------------------------------
[~fmeschbe] Thank you for the clarification. I agree the error code needs to be
correct for the type of failure, and if that can't be achieved with the
exception thrown, the exception needs to be enhanced or extended. Perhaps a
PersistenceDeniedException extending PersistenceException would be enough.
> :applyTo should send 403 instead of 500 when operation fails
> -------------------------------------------------------------
>
> Key: SLING-4413
> URL: https://issues.apache.org/jira/browse/SLING-4413
> Project: Sling
> Issue Type: Bug
> Components: Servlets
> Affects Versions: Servlets Post 2.3.6
> Reporter: Lars Krapf
> Priority: Minor
>
> Example:
> curl -vv curl -F":operation=delete" -F":applyTo=/etc/*"
> http://localhost:4502/content/geometrixx
> Will give you a 500 (PersistenceException) in case /etc/* is not writable to
> the request session - as discussed with Felix & Carsten this should rather be
> a 403.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
