-
Type: Bug
-
Status: Resolved
-
Priority: Major
-
Resolution: Fixed
-
Affects Version/s: None
-
Fix Version/s: 5.6.0-HF24, 5.7.3
-
Component/s: Nuxeo Drive
-
Tags:
-
Backlog priority:600
If the user looses the Read permission on a previously synchronized documents, some operation will trigger a 401 error that trigger a client side token invalidation.
This should be detected server-side to map to another HTTP code, typically 403 (Forbidden) or an empty JSON response depending on the operations.
- depends on
-
NXP-11503 Automation requests with valid credentials but that lacks some permissions on a doc should be mapped to HTTP 403 instead of 401
- Resolved
-
NXP-12493 Automation batch execution returns HTTP 500 instead of 403 in case of a DocumentSecurityException
- Resolved
- is required by
-
NXP-11159 As a user, when I remove Read rights from a synchronized folder/workspace, I expect an action on the local folders
- Resolved