You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Internal Server Error returned when evaluating a resource policy with a scope defined where one resource policy in the scope hierarchy is disabled. Example response from CheckResources:
{
"code": 13,
"message": "Policy check failed"
}
Expected Behavior
If this setup is invalid, then I expect to see a 400-like error with an error message indicating that the resource access could not be evaluated due to disabled scope policy.
Steps To Reproduce
Add scoped policies such that one policy is disabled (I observed that the level of the hierarchy does not matter). Example with default policy being disabled:
Instead of returning `Internal` error, return `FailedPrecondition` when
the requested policy has a compilation error.
Fixescerbos#1590
Signed-off-by: Charith Ellawala <charith@cerbos.dev>
* fix: Return correct error code when store is invalid
Instead of returning `Internal` error, return `FailedPrecondition` when
the requested policy has a compilation error.
Fixes#1590
Signed-off-by: Charith Ellawala <charith@cerbos.dev>
* Include PlanResources
Signed-off-by: Charith Ellawala <charith@cerbos.dev>
---------
Signed-off-by: Charith Ellawala <charith@cerbos.dev>
Is there an existing issue for this?
Current Behavior
Internal Server Error returned when evaluating a resource policy with a scope defined where one resource policy in the scope hierarchy is disabled. Example response from
CheckResources
:Expected Behavior
If this setup is invalid, then I expect to see a 400-like error with an error message indicating that the resource access could not be evaluated due to disabled scope policy.
Steps To Reproduce
Environment
Anything else?
No response
The text was updated successfully, but these errors were encountered: