Story #2358
closed
As a user, I can authenticate with username and password stored in Pulp
Status:
CLOSED - CURRENTRELEASE
Description
Configure Pulp so that:
- Basic Auth (with credentials stored in Pulp) works against any protected API endpoint
- only authenticated users have access to the API
(use permissions available in DRF out-of-the-box we do not want permissions to be more granular for MVP)
- Blocked by Task #2243: Create custom django User model added
- Blocks Story #2359: As a user, I can use JWT tokens for authenticaton added
- Related to Task #2090: Create a plan for user/auth in 3.0 added
- Description updated (diff)
- Description updated (diff)
- Groomed changed from No to Yes
- Sprint Candidate changed from No to Yes
- Sprint/Milestone set to 29
- Status changed from NEW to ASSIGNED
- Assignee set to dkliban@redhat.com
As part of this story, I am also adding a new management command called 'reset-admin-password'. This command will be invoked in the following way:
python manage.py reset-admin-password
Afterwards, the user will be prompted to enter a new password for the 'admin' user of Pulp.
Another way to invoke the command would be with '--random' argument. This would generate a random password for the user 'admin' and then output to stdout.
Our dev setup script could ask the developer to enter a password for 'admin' user. The spec file for the RPM could use this command to create 'admin' user with a random password.
- Status changed from ASSIGNED to POST
- Status changed from POST to MODIFIED
- % Done changed from 0 to 100
- Sprint/Milestone deleted (
29)
- Sprint/Milestone set to 3.0.0
- Status changed from MODIFIED to CLOSED - CURRENTRELEASE
Also available in: Atom
PDF
.
Adds authentication to the REST API
All API views now require authentication. The password for the 'admin' user can now be set using the 'reset-admin-password' django management command. The new command takes an optional '--random' argument.
closes #2358 https://pulp.plan.io/issues/2358