Closed jreadey closed 2 years ago
In practice I've found in useful to be able to set owner name to values that don't correspond to a real username. So leaving the current functiinality as is.
FYI: Ignore above comment - it was meant for a different issue.
There are a few operations (PUT domain with owner param, PUT ACL) where a username is provided that is not the requesting user.
Currently these requests succeed even when the username does not refer to an existing user. The server should instead return an error (404?) in these cases.