Bug 806293

Summary: [REST API] Invalid response message when querying domains with invalid credentials
Product: OKD Reporter: Xavier Coulon <xcoulon>
Component: PodAssignee: Xavier Coulon <xcoulon>
Status: CLOSED DUPLICATE QA Contact: libra bugs <libra-bugs>
Severity: high Docs Contact:
Priority: high    
Version: 2.xCC: adietish, mpatel, xtian
Target Milestone: ---Keywords: Triaged
Target Release: ---   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2012-03-29 13:03:41 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:

Description Xavier Coulon 2012-03-23 11:40:40 UTC 
When trying to query domains with invalid credentials, the server responds with a 200/OK and an empty list of domains. 
The expected response would be a 403/FORBIDDEN
On the client side, there is no way to distinguish between an account with no domain and bad credentials, so this is pretty serious.
Comment 1 Lili Nader 2012-03-24 02:20:26 UTC 
Is this on a devenv?  On the devenv we do not check credentials.  If this is happening on staging or production then this is an issue.
Comment 2 Xavier Coulon 2012-03-26 08:01:00 UTC 
Yes, all the requests where executed on stg and production.
Comment 3 Xiaoli Tian 2012-03-29 13:03:41 UTC 
It seems it's duplicate of bug 806298, if not , feel free to re-open it.

*** This bug has been marked as a duplicate of bug 806298 ***