<< Back to previous view |
[QB-3983] Filter out builds not accessible instead of throwing AccessDeniedException for build query restful api
|
|
Status: | Closed |
Project: | QuickBuild |
Component/s: | None |
Affects Version/s: | None |
Fix Version/s: | 14.0.0 |
Type: | Improvement | Priority: | Minor |
Reporter: | ChangSeop LEE | Assigned To: | Robin Shen |
Resolution: | Fixed | Votes: | 0 |
Remaining Estimate: | Unknown | Time Spent: | Unknown |
Original Estimate: | Unknown |
Description |
Current "/rest/builds" API returns all build information IF the requester has access permission to all configurations when the requester didn't specify the "configurationId".
How about filtering out those builds that the requester does not have access permission to the configuration? Or how about adding another rest API that returns only build IDs and lets users get build information by calling "/rest/build/{id}" for each build ID. Then the "/rest/build/{id}" will return the build information if the requester has access permission to the configuration. |