Uploaded image for project: 'OASIS Content Management Interoperability Services (CMIS) TC'
  1. OASIS Content Management Interoperability Services (CMIS) TC
  2. CMIS-559

3.4.1 common exceptions - permissionDenied exception issue

    XMLWordPrintable

    Details

    • Type: Bug
    • Status: Closed
    • Priority: Major
    • Resolution: Applied
    • Affects Version/s: None
    • Fix Version/s: None
    • Component/s: REST/AtomPub Binding
    • Labels:
      None

      Description

      permissionDenied (per Part I is "the caller of the service does not have sufficient permissions to perform the operation") is mapped to status 403 (Forbidden). The HTTP spec defines this status as "The server ... is refusing to fulfill [the request]. Authorization will not help..." This does not match with Part I's "insufficient permissions" (which implies that [re-]authorization could help). Seems to me the mapping should be to HTTP status 401 (Unauthorized), or at least should map to one of 401 or 403 as a repository decision.

        Attachments

          Activity

            People

            • Assignee:
              ryan.mcveigh Ryan McVeigh (Inactive)
              Reporter:
              ryan.mcveigh Ryan McVeigh (Inactive)
            • Watchers:
              0 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved: