Uploaded image for project: 'jBPM'
  1. jBPM
  2. JBPM-9121

REST Process APIs should return 403 when user has no permissions

    XMLWordPrintable

Details

    • Bug
    • Resolution: Done
    • Minor
    • 7.38.0.Final
    • 7.36.0.Final
    • KieServer
    • None
    • NEW
    • NEW

    Description

      After RHPAM-2449, security (based on required roles) is performed only on process operations, but REST APIs are responding with an internal error (500) instead of forbidden (403).
      Add also annotations for Swagger.

      Attachments

        Activity

          People

            gmunozfe@redhat.com Gonzalo Muñoz Fernández
            gmunozfe@redhat.com Gonzalo Muñoz Fernández
            Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved: