-
Type:
Bug
-
Status: Closed (View Workflow)
-
Priority:
Major
-
Resolution: Fixed
-
Affects Version/s: 2.3.15
-
Component/s: REST-API
-
Labels:None
The REST API allows modifying requests from basic users if the request does not define a body (e.g. POST /v1/maxscale/logs/flush). This behavior is fixed in 2.4 but was not documented.