Details
-
Bug
-
Resolution: Fixed
-
Major
-
5.0.0
-
Enterprise Edition 5.0.0-1854
-
Untriaged
-
Ubuntu 64-bit
-
Yes
Description
- Create a user in LDAP and enable authentication in CB.
- Assign a role to the user in CB
- Remove the user from all roles in CB and execute the following:
curl -X POST --data ‘cluster.pools!read,cluster.nodes!read’ http://dave:password@10.142.150.101:8091/pools/default/checkPermissions
Expected Result - Since the user is not part of CB anymore and the user credentials are passed in curl, it should return a 401.