Uploaded image for project: 'EJBCA'
  1. EJBCA
  2. ECA-9428

Some WS methods swallow AuthorizationDeniedException

    Details

    • Type: Improvement
    • Status: Closed
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: EJBCA 7.4.3
    • Fix Version/s: EJBCA 7.4.3
    • Component/s: None
    • Labels:

      Description

      Looking at the code, getCertificatesByExpirationTimeAndType does a normal getAdmin, which throws an AuthorizationDeniedException(msg); if the admin does not have /administrator.

      The issue here seems to be that the three methods:
      EjbcaWS.getCertificatesByExpirationTimeAndType
      EjbcaWS.getCertificatesByExpirationTimeAndIssuer
      EjbcaWS.getCertificatesByExpirationTime

      Swallows AuthorizationDeniedException silently. Which seems like a strange thing to do? It should probably be logged there?

        Attachments

          Issue Links

            Activity

              People

              Assignee:
              bastianf Bastian Fredriksson
              Reporter:
              bastianf Bastian Fredriksson
              Verified by:
              Andrey Sergeev
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

                Dates

                Created:
                Updated:
                Resolved:

                  Time Tracking

                  Estimated:
                  Original Estimate - 2 hours
                  2h
                  Remaining:
                  Time Spent - 1 hour Remaining Estimate - 1 hour
                  1h
                  Logged:
                  Time Spent - 1 hour Remaining Estimate - 1 hour
                  1h