Ernest Rott wrote: > Hello, > > Today, I have made an update to last sources. > > When I tried to call a REST service by using GET method and being > authenticated as normal user I experienced a HTTP 403 error, "Access is > denied". When I authenticated as "superadmin" user, everything is OK. > > https://superadmin:[email protected]:8443/sipxconfig/rest/phonebook * PASSED > *https://202:[email protected]:8443/sipxconfig/rest/phonebook * FAILED > > * It's strange since on Wednesday I was able to call a REST service > logged as a normal user. >
Standard users (users without superadmin privileges) can only access REST services with URLs matching "rest/my" and "rest/private" (It's declared in security.beans.xml). The behavior that you are seeing now is actually correct. I did not see any changes in the code that would affect it recently: any chance you know the version you were running when it was working. Maybe your user (202) had superadmin privileges until Wednesday? D. _______________________________________________ sipx-dev mailing list [email protected] List Archive: http://list.sipfoundry.org/archive/sipx-dev Unsubscribe: http://list.sipfoundry.org/mailman/listinfo/sipx-dev sipXecs IP PBX -- http://www.sipfoundry.org/
