Closed Bug 1207631 Opened 9 years ago Closed 9 years ago

using taskcluster python client, trying to download a private file without credentials raise no error and download a wrong file

Categories

(Taskcluster :: Services, defect)

Product:
Taskcluster
Component:
Services
Type:
defect
Priority:
Not set
Severity:
normal

Tracking

(Not tracked)

Status:
RESOLVED INVALID

People

(Reporter: parkouss, Unassigned)

References

Details

Not sure if this is the right component for that;

So trying to download a private artifact using taskcluster python client does not raise an error - but instead the content of the downloaded file is:

{
  "message": "Authorization Failed",
  "error": {
    "info": "None of the scope-sets was satisfied",
    "scopesets": [
      [
        "queue:get-artifact:private/build/aries.zip"
      ]
    ],
    "scopes": []
  }

I think it should provide a way to test the authentication (maybe there is one that I missed ?) and/or raise an exception instead of downloading a file with a bad content - for now it is hard to say from a script if a download was good or not. :)

I did not tested, but I suppose we have the same kind of error when using bad credentials.
Ah, I misunderstood in irc.  I'm suspecting that the server is correctly sending a 403, but the client isn't interpreting that correctly.
Component: Queue → Client Libraries
Well I'm sorry I don't think there is a bug here - just me doing things the wrong way. :)

So I use queue.buildUrl to get the url of artifacts. Then I forgot to check the status code
while using my own request code to download...
Not a taskcluster bug!

I think I will use queue.buildSignedUrl, and check the status code, and everything should be good then.
Status: NEW → RESOLVED
Closed: 9 years ago
Resolution: --- → INVALID
No longer blocks: 1227780
Component: Client Libraries → Services
You need to log in before you can comment on or make changes to this bug.