mirror of
https://github.com/fleetdm/fleet
synced 2026-04-21 21:47:20 +00:00
0f436d26db
I was getting a cryptic error and no logs in fleet when trying to apply an invalid spec file: ```sh fleetctl apply -f ./some-queries.yml Error: applying policies: POST /api/latest/fleet/spec/policies received status 500 forbidden: forbidden ``` With the changes in this PR now I get a more descriptive error (bad request): ```sh fleetctl apply -f ./some-queries.yml Error: applying policies: POST /api/latest/fleet/spec/policies received status 400 Bad request: policy spec payload verification: policy query cannot be empty ``` - [X] Changes file added for user-visible changes in `changes/` or `orbit/changes/`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - ~[ ] Documented any API changes (docs/Using-Fleet/REST-API.md or docs/Contributing/API-for-contributors.md)~ ~- [ ] Documented any permissions changes~ - ~[ ] Input data is properly validated, `SELECT *` is avoided, SQL injection is prevented (using placeholders for values in statements)~ - ~[ ] Added support on fleet's osquery simulator `cmd/osquery-perf` for new osquery data ingestion features.~ - [x] Added/updated tests - [X] Manual QA for all new/changed functionality - ~For Orbit and Fleet Desktop changes:~ - ~[ ] Manual QA must be performed in the three main OSs, macOS, Windows and Linux.~ - ~[ ] Auto-update manual QA, from released version of component to new version (see [tools/tuf/test](../tools/tuf/test/README.md)).~
1 line
59 B
Text
1 line
59 B
Text
* Run authorization checks before processing policy specs.
|