[ https://jira.fiware.org/browse/HELP-16182?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Mohamed Sadiq reassigned HELP-16182:
------------------------------------
Assignee: Backlog Manager
> [fiware-stackoverflow] DELETE request for organizations does not require auth token
> -----------------------------------------------------------------------------------
>
> Key: HELP-16182
> URL: https://jira.fiware.org/browse/HELP-16182
> Project: Help-Desk
> Issue Type: Monitor
> Components: FIWARE-TECH-HELP
> Reporter: Backlog Manager
> Assignee: Backlog Manager
> Labels: fiware, fiware-keyrock
>
> Created question in FIWARE Q/A platform on 10-10-2019 at 12:10
> {color: red}Please, ANSWER this question AT{color} https://stackoverflow.com/questions/58320424/delete-request-for-organizations-does-not-require-auth-token
> +Question:+
> DELETE request for organizations does not require auth token
> +Description:+
> I've noticed when you are about to delete an organization the suggested request in docu is this one (subsection DELETE AN ORGANIZATION inside ORGANIZATION CRUD ACTIONS):
> curl -iX DELETE \
> 'http://localhost:3005/v1/organizations/{{organization-id}}' \
> -H 'Content-Type: application/json' \
> Which does not include the X-Auth-token as part of the header.
> Could this result in a security issue (allowing anyone to delete any organization)?
--
This message was sent by Atlassian JIRA
(v6.4.1#64016)
You can get more information about our cookies and privacy policies clicking on the following links: Privacy policy Cookies policy