Project

General

Profile

Actions
Copy link

Bug #30993

closed

HRT endpoint enables owner in strong params definition

Added by Marek Hulán over 3 years ago. Updated over 3 years ago.

Status:
Closed
Priority:
Normal
Assignee:
-
Category:
Host registration
Target version:
-
Difficulty:
Triaged:
No
Bugzilla link:
Pull request:
https://github.com/theforeman/foreman/pull/8049
Fixed in Releases:
2.3.0
Found in Releases:
Red Hat JIRA:

Description

While it does no harm, the strong params whitelist contains the owner https://github.com/theforeman/foreman/pull/8018/files/71f59ba79a611232ea93ae32847b3d159125dba5#diff-df936dd14181cb268280386173da4a5aR25

Only owner_id and owner_type are harfmul, however this should not be allowed anyway.

Related issues 1 (0 open1 closed)

Related to Foreman - Feature #30440: Simple & automatic host registration WFClosedLeos StejskalActions
Actions
Copy link
 #1

Updated by Marek Hulán over 3 years ago

  • Related to Feature #30440: Simple & automatic host registration WF added
Actions
Copy link
 #2

Updated by The Foreman Bot over 3 years ago

  • Status changed from New to Ready For Testing
  • Pull request https://github.com/theforeman/foreman/pull/8049 added
Actions
Copy link
 #3

Updated by The Foreman Bot over 3 years ago

  • Fixed in Releases 2.3.0 added
Actions
Copy link
 #4

Updated by Leos Stejskal over 3 years ago

  • Status changed from Ready For Testing to Closed
Actions
Copy link
 #5

Updated by Tomer Brisker over 3 years ago

  • Category set to Host registration
Actions
Copy link

Also available in: Atom PDF