Api calls that include these should fail. Here is an example of how they do not:
We use a made up API parameter (iguana), and set it to something arbitrary ("cool"). Not only does the call not fail, it actually returns node usage hours, as if the parameter had not been entered:
curl -X GET -H 'Coopr-UserID:admin' -H 'Coopr-TenantID:superadmin' -H 'Coopr-ApiKey:admin' http://127.0.0.1:55054/v2/metrics/nodes/usage?iguana=cool
This should fail.
This is doubly bad, because if somebody were to misspell the key of a real parameter (e.g. start= spelled starts=), they would likely get the wrong return value (node usage hours would be counted from the very beginning, instead of from the start time parameter value we entered and intended on using).