Bug #3869
closedAPI error messages poorly formatted
Description
GET /api/users with an unauthorized user returns in the json below. Note the missing 'results' keyword.
{
"total": 0,
"subtotal": 0,
"page": 1,
"per_page": 20,
"search": null,
"sort": {
"by": null,
"order": null
},
"": {
"message": "Access denied",
"details": null
}
}
Updated by Daniel Lobato Garcia over 11 years ago
Should we go for this? It seems to me that 403 is meaningful enough for the client not to even try to read 'results'.
Updated by Dominic Cleal over 11 years ago
Daniel Lobato Garcia wrote:
Should we go for this? It seems to me that 403 is meaningful enough for the client not to even try to read 'results'.
I think so, because the message is valuable too for the reason, the client should be able to access it.
Updated by Daniel Lobato Garcia over 11 years ago
Updated by Dominic Cleal about 11 years ago
- Status changed from Ready For Testing to Closed
- Translation missing: en.field_release set to 2
Seems I put the wrong redmine number in the commit message (incorrectly #3960).
This was fixed in 0f7d219a4a65cd795eecd05117b08511d9025de2.