Comment 1 Daniel Tröder 2019-08-23 11:48:19 CEST

Same HTTP500 for "options" and "policies". Minimum fro a group is:

{
  "properties": {
          "name": "grp01"
	},
  "position": "cn=klassen,cn=schueler,cn=groups,ou=DEMOSCHOOL,dc=uni,dc=dtr",
  "superordinate": null,
  "options": {},
  "policies": {}
}

Comment 2 Florian Best 2019-09-01 22:26:48 CEST

univention-management-console-module-udm (9.0.12-26)
4564641c221b | Bug #50046: Bug #27816: fix sanitizing of arguments when creating objects via POST

Comment 3 Daniel Tröder 2019-09-12 10:41:03 CEST

Still all three (position, options, policies) are required:

univention-management-console-mod 9.0.14-1


curl -s -X POST -H "Accept:application/json" -H "Content-Type:application/json" -d '{
  "properties": {
    "name": "testgrp01",
    "description": "Text 01", 
    "users": [
            "uid=demo_student,cn=schueler,cn=users,ou=DEMOSCHOOL,dc=uni,dc=dtr", 
            "uid=demo_teacher,cn=lehrer,cn=users,ou=DEMOSCHOOL,dc=uni,dc=dtr"
        ]
}
}'  -u Administrator:univention 'http://m66.uni.dtr/univention/udm/groups/group/' | python -m json.tool
{
    "_links": {
        "curies": [
            {
                "href": "http://m66.uni.dtr/univention/udm/relation/{rel}",
                "name": "udm",
                "templated": true
            }
        ]
    },
    "error": {
        "code": 422,
        "error": {
            "body_arguments": {
                "options": "Argument required",
                "policies": "Argument required",
                "position": "Argument required"
            }
        },
        "message": "3 error(s) occurred:\nRequest argument \"position\" Argument required\nRequest argument \"options\" Argument required\nRequest argument \"policies\" Argument required\n",
        "title": "Unprocessable Entity",
        "traceback": null
    }
}

Comment 4 Florian Best 2019-09-12 11:35:56 CEST

This is on purpose, the request must include all necessary parameters. Use /univention/udm/group/group/add to get a template containing all necessary values, which can be used for a POST request.

Comment 5 Daniel Tröder 2019-09-12 12:30:34 CEST

(In reply to Florian Best from comment #4)
> This is on purpose, the request must include all necessary parameters. Use
> /univention/udm/group/group/add to get a template containing all necessary
> values, which can be used for a POST request.
That is a unnecessary restriction.
Requiring a GET on the template incurs a unnecessary performance penalty.

To create a group nothing more than the "name" property is required:

--------------------------------------------
$ udm groups/group create --set name=testgroup001
WARNING: The object is not going to be created underneath of its default containers.
Object created: cn=testgroup001,dc=uni,dc=dtr
--------------------------------------------

Why would the REST API require options, policies and position, if the cli doesn't?

Comment 6 Ingo Steuwer 2019-09-13 09:37:03 CEST

(In reply to Daniel Tröder from comment #5)

> Why would the REST API require options, policies and position, if the cli
> doesn't?

I think it is reasonable to make paramters which have well defined defaults optional. I expect that far most users will never define options or policies for a group and many of them even don't know what those are good for.

Comment 7 Florian Best 2019-09-22 15:12:01 CEST

I still don't fully agree but I made the changes as you wished.

univention-directory-manager-rest (9.0.16-1)
8016c4d43f0e | Bug #27816: Bug #50046: make position, options, policies in POST create request optional

Comment 8 Florian Best 2019-10-02 16:06:32 CEST

UCS 4.4-2 has been released:
 https://docs.software-univention.de/release-notes-4.4-2-en.html
 https://docs.software-univention.de/release-notes-4.4-2-de.html

If this error occurs again, please use "Clone This Bug".