You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
when a user creates a security group that is incorrectly formatted, they should see an error
if a user pushes an app in an org/space that has an already incorrectly formatted security group rule, they should see a descriptive error as to why their app does not start
this is a distinct choice to consider, but should the app push still succeed and the invalid rule discarded? (I would argue against this as it could cause more security problems than it solves app push failures)
Steps to Reproduce
create a file with an ASG definition (notice whitespace in IP destination)
CC validates all the fields in an ASG. In particular, it uses Ruby's NetAddr::IPv4Net.parse to verify each proposed destination. The problem is that the Ruby library ignores leading and trailing white-space, while apparently the IPAddr parser Diego is using doesn't. Easy fix.
Issue
Steps to Reproduce
cf create-security-group bad-asg <path-to-asg-file>
cf bind-security-group bad-asg <some-org> <some-space>
Expected result
Possible Fix
The text was updated successfully, but these errors were encountered: