yahoo-eng-team team mailing list archive

Thread
Date

[Bug 1796247] [NEW] Auth API returns 401 when the token has invalid project

To: yahoo-eng-team@xxxxxxxxxxxxxxxxxxx
From: Yang Youseok <1796247@xxxxxxxxxxxxxxxxxx>
Date: Fri, 05 Oct 2018 08:07:06 -0000
Reply-to: Bug 1796247 <1796247@xxxxxxxxxxxxxxxxxx>
Sender: bounces@xxxxxxxxxxxxx

Public bug reported:

in keystone/auth/core.py _lookup_project() returns
'exception.Unauthorized' when ProjectNotFound exception occurs.

We first do not understand the cause since it return 401 HTTP error code
and was trying to fix role assignment. IMHO, when token has invalid
project (actually we had a deleted project in the token), the API should
return 404 instead of 401.

** Affects: keystone
     Importance: Undecided
         Status: New

** Summary changed:

- Auth API returns 401 when invalid project deleted
+ Auth API returns 401 when the token has invalid project

-- 
You received this bug notification because you are a member of Yahoo!
Engineering Team, which is subscribed to OpenStack Identity (keystone).
https://bugs.launchpad.net/bugs/1796247

Title:
  Auth API returns 401 when the token has invalid project

Status in OpenStack Identity (keystone):
  New

Bug description:
  in keystone/auth/core.py _lookup_project() returns
  'exception.Unauthorized' when ProjectNotFound exception occurs.

  We first do not understand the cause since it return 401 HTTP error
  code and was trying to fix role assignment. IMHO, when token has
  invalid project (actually we had a deleted project in the token), the
  API should return 404 instead of 401.

To manage notifications about this bug go to:
https://bugs.launchpad.net/keystone/+bug/1796247/+subscriptions

Follow ups

[Bug 1796247] Re: Auth API returns 401 when the token has invalid project
From: Colleen Murphy, 2018-10-05