Groups API call with empty query

adrian.schofield · February 25, 2020, 10:08am

Hi All

Can anyone confirm that this is expected behaviour for me?

Make a call to the groups API like this:

/api/v1/groups?q=<group_name>

where group_name is null

The response to this call is all groups up to limit and I would like to know if this is expected or whether the expectation would be no groups are returned.

When testing it returns 200 groups for me and I think this is expected. Someone in my organisation ran this call and then processed the results not realising that they were working on a response which contained all groups hence the question

Thanks
Adrian

abroadhurst · February 25, 2020, 11:30am

This is not expected. You should not retrieve all the result but an empty array assuming that you have no groups that match the name ‘null’.

It likely that they entered the wrong query name ‘q’ or they entered a ’ ’ which could caused the result to return all the groups.

adrian.schofield · February 25, 2020, 11:44am

Hmmm maybe a bug then. I tested in Postman with this url:

{{url}}/api/v1/groups?q=

I got many groups returned

Adrian

dragos · February 26, 2020, 5:07am

Hi @adrian.schofield

Can you please open a support case with us at support@okta.com in order to reach out internally and officially confirm the behavior?

adrian.schofield · February 26, 2020, 9:40am

Thanks Dragos I’ve logged a ticket for that 00776671

Adrian

system · January 24, 2024, 6:50pm

This topic was automatically closed 24 hours after the last reply. New replies are no longer allowed.