Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

WebServer.Files API returns 403 when child is forbidden #81

Closed
jimmyca15 opened this issue May 3, 2017 · 0 comments
Closed

WebServer.Files API returns 403 when child is forbidden #81

jimmyca15 opened this issue May 3, 2017 · 0 comments
Milestone
1.1.1

Comments

@jimmyca15
Copy link
Member

jimmyca15 commented May 3, 2017
edited
Loading

When enumerating a directory with the WebFiles API (/api/webserver/files?parent.id={id}) it is possible to get a 403 error due to a child virtual directory having a path that is not allowed. This behavior differs from the Core Files API (/api/files?parent.id={id}) where enumerating a directory that has read access will never respond with a 403 error.

Proposal

When enumerating a directory with the webfiles API and the path of a child is not allowed, that child webfile resource will have a NULL file_info field. The API will not return 403 until that child is specifically requested (/api/webserver/files/{id})
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
1.1.1
Development

No branches or pull requests
1 participant
@jimmyca15