Project

General

Profile

Actions

Bug #36634

closed

ACS bulk refresh through API silently sanitizes input IDs

Added by Samir Jha 12 months ago. Updated 9 months ago.

Status:
Closed
Priority:
Normal
Assignee:
Category:
Alternate Content Sources
Target version:
Difficulty:
Triaged:
Yes
Fixed in Releases:
Found in Releases:

Description

Cloned from https://bugzilla.redhat.com/show_bug.cgi?id=2224113

Description of problem:
When using the API to request a bulk refresh of alternate content sources, invalid ids will be discarded if there is a single valid ACS id in the query.

Version-Release number of selected component (if applicable):
n/a

How reproducible:
Always

Steps to Reproduce:
1. Create a Sat instance with an alternate content source, note the id.
2. Start a bulk refresh using the API, including the valid id along with several bogus id's:
`curl --request POST --user admin:changeme -H "Content-type: application/json" <host>/katello/api/alternate_content_sources/bulk/refresh?ids=<valid>,1001,1002,1003`

Actual results:
JSON output informing the user that the valid id alone has been refreshed

Expected results:
An error indicating invalid parameters

Additional info:
n/a

Actions #1

Updated by The Foreman Bot 12 months ago

  • Status changed from New to Ready For Testing
  • Assignee set to Samir Jha
  • Pull request https://github.com/Katello/katello/pull/10675 added
Actions #2

Updated by Quinn James 12 months ago

  • Subject changed from ACS bulk refresh through API silently sanitizes input ids to ACS bulk refresh through API silently sanitizes input ids
  • Category set to Alternate Content Sources
  • Target version set to Katello 4.10.0
  • Triaged changed from No to Yes
Actions #3

Updated by The Foreman Bot 11 months ago

  • Fixed in Releases Katello 4.10.0 added
Actions #4

Updated by Samir Jha 11 months ago

  • Status changed from Ready For Testing to Closed
Actions #5

Updated by David Moore 9 months ago

  • Subject changed from ACS bulk refresh through API silently sanitizes input ids to ACS bulk refresh through API silently sanitizes input IDs
Actions

Also available in: Atom PDF