Uploaded image for project: 'Couchbase Server'
  1. Couchbase Server
  2. MB-22768

/checkPermissions - not returning 401 for non-existent user in cb server

    XMLWordPrintable

Details

    • Bug
    • Resolution: Fixed
    • Major
    • 5.0.0
    • 5.0.0
    • ns_server
    • Enterprise Edition 5.0.0-1854

    Description

      1. Create a user in LDAP and enable authentication in CB.
      2. Assign a role to the user in CB
      3. Remove the user from all roles in CB and execute the following:
        curl -X POST --data ‘cluster.pools!read,cluster.nodes!read’ http://dave:password@10.142.150.101:8091/pools/default/checkPermissions

       

      Expected Result - Since the user is not part of CB anymore and the user credentials are passed in curl, it should return a 401.

      Attachments

        For Gerrit Dashboard: MB-22768
        # Subject Branch Project Status CR V
        74281,3 MB-22768 do not allow LDAP authenticated user to access master ns_server Status: MERGED +2 +1

        Activity

          People

            artem Artem Stemkovski
            ritam.sharma Ritam Sharma
            Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved:

              Gerrit Reviews

                There are no open Gerrit changes

                PagerDuty