Uploaded image for project: 'Couchbase .NET client library'
  1. Couchbase .NET client library
  2. NCBC-2854

GetOrCreateBucketAsync hides AuthenticationFailureException as BucketNotFoundException

    XMLWordPrintable

Details

    • Bug
    • Resolution: Unresolved
    • Major
    • backlog-3.0
    • None
    • None
    • None
    • 1

    Description

      Public websites like GitHub turn auth failures into 404 to prevent discovery of secure repos. 

      However, CB Server is still returning AuthenticationFailure at the protocol level and it's available in the logs to the SDK user, so obfuscating the auth failure isn't giving us any security benefit.

       

      Raising AuthenticationFailureException instead of BucketNotFoundException would be a breaking change (maybe 3.2?), but we can at least include AuthenticationFailureException as an inner exception.

      Attachments

        No reviews matched the request. Check your Options in the drop-down menu of this sections header.

        Activity

          People

            jmorris Jeff Morris
            richard.ponton Richard Ponton
            Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

            Dates

              Created:
              Updated:

              Gerrit Reviews

                There are no open Gerrit changes

                PagerDuty