permissions enum doesn't contain "Invalid" #1962
Assignees
Labels
bug
Something isn't working
Comments
|
Tracing it through the code is because of the change to admin access where dial/bind is no longer assumed, and instead, The downside is that the spec was never updated, and any admin client accessing the service list will encounter similar errors. Most OpenAPI clients are generated with value checking for enumerations and will not accept unknown values. The workaround is to hand patch the Once a new version of ziti is released with this issue fixed, upgrading and regenerating from the spec the controller provides will also fix the issue. |
andrewpmartinez
added a commit
to openziti/edge-api
that referenced
this issue
Apr 19, 2024
- Invalid is intentionally returned by the controller for admins who can see services but do not have a policy to access them.
andrewpmartinez
added a commit
that referenced
this issue
Apr 19, 2024
andrewpmartinez
added a commit
that referenced
this issue
Apr 19, 2024
fixes #1962 with edge-api update to v0.26.18
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
When enumerating services as an administrator using the management api, such as
ziti edge list services -j, if the identity doesn't have permissions because no service policy exists to grant the admin access, the permissions array returns "Invalid":This causes problems with generated clients because "Invalid" doesn't appear in the spec
The text was updated successfully, but these errors were encountered: