public/grafana
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Alerting: Fix fine-grained rule access control to use 403 for authorization error (#79239)

Browse Source 
* use 403 for authorization error
* update silences API
* add ForbiddenError to rule API responses
This commit is contained in:
Yuri Tseretyan
2023-12-07 13:43:58 -05:00
committed by GitHub
parent aa12c6c772
commit 2be7605794
17 changed files with 629 additions and 444 deletions
Download Patch File Download Diff File Expand all files Collapse all files
pkg/tests/api/alerting/api_alertmanager_test.go
+2 -2
View File
@@ -1049,7 +1049,7 @@ func TestIntegrationAlertRuleCRUD(t *testing.T) {
},
expectedCode: func() int {
if setting.IsEnterprise {
return http.StatusUnauthorized
return http.StatusForbidden
}
return http.StatusBadRequest
}(),
@@ -2285,7 +2285,7 @@ func TestIntegrationEval(t *testing.T) {
expectedResponse: func() string { return "" },
expectedStatusCode: func() int {
if setting.IsEnterprise {
return http.StatusUnauthorized
return http.StatusForbidden
}
return http.StatusBadRequest
},