Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

TO /api/4.0/servers/:hostname/update should allow setting config_apply_time and revalidate_apply_time even if user doesn't have the lock #7047

Closed
rawlinp opened this issue Aug 30, 2022 · 0 comments · Fixed by #7065
Closed

TO /api/4.0/servers/:hostname/update should allow setting config_apply_time and revalidate_apply_time even if user doesn't have the lock #7047

rawlinp opened this issue Aug 30, 2022 · 0 comments · Fixed by #7065
Assignees
@shamrickus
Labels
bug something isn't working as intended Traffic Ops related to Traffic Ops

Comments

@rawlinp
Copy link
Contributor

rawlinp commented Aug 30, 2022

This Bug Report affects these Traffic Control components:

  • Traffic Ops

Current behavior:

If a CDN is locked and a user tries to call POST /api/4.0/servers/:hostname/update with the query parameters config_apply_time or revalidate_apply_time for a server in that CDN but the user doesn't hold the lock, TO denies the request with a 403.

Expected behavior:

The aforementioned call should not return a 403 if the query parameters config_apply_time or revalidate_apply_time are used. This would allow caches to un-queue themselves after applying updates/revalidations even if the CDN is locked.

Steps to reproduce:

As user A, lock the CDN. As user B, attempt to make the aforementioned request and observe the 403.
@rawlinp rawlinp added bug something isn't working as intended Traffic Ops related to Traffic Ops labels Aug 30, 2022
@shamrickus shamrickus self-assigned this Sep 7, 2022
@shamrickus shamrickus mentioned this issue Sep 7, 2022
Merged
4 tasks
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@shamrickus shamrickus

Labels
bug something isn't working as intended Traffic Ops related to Traffic Ops
Projects
None yet
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

Allow update time params on Servers when CDN is locked. shamrickus/trafficcontrol
2 participants
@shamrickus @rawlinp