I could see there are different kind of policy
(A) List operation policy (B) Per Item policy
If Quantum support only B, return 200 is OK. If Quantum support also A, it should return 403 because it is authorized error but request has no uuid.
I could see there are different kind of policy
(A) List operation policy
(B) Per Item policy
If Quantum support only B, return 200 is OK.
If Quantum support also A, it should return 403 because it is authorized error but request has no uuid.