-
Type: Bug
-
Resolution: Gone away
-
Priority: Major - P3
-
None
-
Affects Version/s: None
-
Component/s: Security
-
Labels:None
-
ALL
-
Platforms 2018-04-09, Platforms 2018-04-23, Platforms 2018-05-07, Platforms 2018-05-21
In particular, if an exception is thrown from Command::checkAuthForOperation(), we won't log or audit the failure. It seems like the auth code should unify error handling by either converting all statuses to exceptions or vice-versa to ensure uniform handling of failures.