Project

Profile

Help

Issue #3164

closed

Requesting a JWT token doesn't support basic auth

Added by daviddavis about 5 years ago. Updated over 3 years ago.

Status:
CLOSED - WONTFIX
Priority:
Normal
Assignee:
-
Category:
-
Sprint/Milestone:
Start date:
Due date:
Estimated time:
Severity:
2. Medium
Version:
Platform Release:
OS:
Triaged:
Yes
Groomed:
No
Sprint Candidate:
No
Tags:
Sprint:
Quarter:

Description

Currently, you have to pass username and password in the body of the POST request to /api/v3/jwt. It should probably use basic auth.


Related issues

Related to Pulp - Story #3163: As a user, I can refresh an unexpired JWT.CLOSED - WONTFIX

Actions
Actions #1

Updated by daviddavis about 5 years ago

There's some debate around whether to use basic auth in addition to allowing users to submit username/password as POST params or just basic auth.

Actions #2

Updated by daviddavis about 5 years ago

  • Subject changed from Requesting a JWT token should have basic auth to Requesting a JWT token should support basic auth
Actions #3

Updated by daviddavis about 5 years ago

  • Subject changed from Requesting a JWT token should support basic auth to Requesting a JWT token doesn't support basic auth
Actions #4

Updated by dalley about 5 years ago

  • Triaged changed from No to Yes
Actions #5

Updated by bmbouter almost 5 years ago

I think we should only accept basic auth. Having one endpoint accept another one seems inconsistent.

Actions #6

Updated by daviddavis almost 5 years ago

  • Related to Story #3163: As a user, I can refresh an unexpired JWT. added
Actions #7

Updated by daviddavis almost 5 years ago

JWT got removed from the MVP. Going to revisit again in 3.1+ with new user stories.

Actions #8

Updated by daviddavis almost 5 years ago

  • Status changed from NEW to CLOSED - WONTFIX
Actions #9

Updated by dkliban@redhat.com over 4 years ago

  • Sprint/Milestone set to 3.0.0
Actions #10

Updated by bmbouter over 3 years ago

  • Tags deleted (Pulp 3, Pulp 3 MVP)

Also available in: Atom PDF