Bug #36634
closed
ACS bulk refresh through API silently sanitizes input IDs
Description
Cloned from https://bugzilla.redhat.com/show_bug.cgi?id=2224113
Description of problem:
When using the API to request a bulk refresh of alternate content sources, invalid ids will be discarded if there is a single valid ACS id in the query.
Version-Release number of selected component (if applicable):
n/a
How reproducible:
Always
Steps to Reproduce:
1. Create a Sat instance with an alternate content source, note the id.
2. Start a bulk refresh using the API, including the valid id along with several bogus id's:
`curl --request POST --user admin:changeme -H "Content-type: application/json" <host>/katello/api/alternate_content_sources/bulk/refresh?ids=<valid>,1001,1002,1003`
Actual results:
JSON output informing the user that the valid id alone has been refreshed
Expected results:
An error indicating invalid parameters
Additional info:
n/a
Updated by The Foreman Bot over 1 year ago
- Status changed from New to Ready For Testing
- Assignee set to Samir Jha
- Pull request https://github.com/Katello/katello/pull/10675 added
Updated by Quinn James over 1 year ago
- Subject changed from ACS bulk refresh through API silently sanitizes input ids to ACS bulk refresh through API silently sanitizes input ids
- Category set to Alternate Content Sources
- Target version set to Katello 4.10.0
- Triaged changed from No to Yes
Updated by The Foreman Bot over 1 year ago
- Fixed in Releases Katello 4.10.0 added
Updated by Samir Jha over 1 year ago
- Status changed from Ready For Testing to Closed
Applied in changeset katello|b291abc28537628524033642020d7f33ad8f82ff.
Updated by David Moore over 1 year ago
- Subject changed from ACS bulk refresh through API silently sanitizes input ids to ACS bulk refresh through API silently sanitizes input IDs