Project

Profile

Help

Send by e-mail

Story #4074

Story #3968: As a Pulp user, I can protect content I have stored in Pulp

As a user, the content guard logic needs to be loaded and used by the content app.

Added by jortel@redhat.com about 1 year ago. Updated 6 months ago.

Status:
MODIFIED
Priority:
Normal
Assignee:
jortel@redhat.com
Category:
-
Sprint/Milestone:
3.0
Start date:
Due date:
% Done:

0%

Platform Release:
Blocks Release:
Backwards Incompatible:
No
Groomed:
Yes
Sprint Candidate:
No
Tags:
QA Contact:
Complexity:
Smash Test:
Verified:
No
Verification Required:
No
Sprint:
Sprint 45

Description

Plugin content guard logic needs to be loaded and associated with a ContentGuard model (class). The content needs to delegate authorization to the content-guard when handling a GET request.

The logic is loaded an associated with a ContentGuard model (class) using a decorator.


@contentguard(model=FooGuard)
def permit(request, content_guard):
    pass

Something like this In the content app:

try:
    contentguard.permit(request, distribution)
except PermissionError:
    return HttpResponseForbidden()
Hide closed

Checklist

Related issues

Related to Pulp - Test #4256: As a user, the content guard logic needs to be loaded and used by the content app. CLOSED - COMPLETE Actions
Related to RPM Support - Test #4257: QueryExistingArtifacts stage does not prevent duplicates within a stream NEW Actions
Blocks Pulp - Story #3972: As a plugin writer, I can define a type of ContentGuard MODIFIED Actions
Blocks CertGuard - Story #4009: Make CertGuard capabilities in Pulp3 MODIFIED Actions

Associated revisions

Revision 40621ef5 View on GitHub
Added by jortel@redhat.com 11 months ago

Delegate content authorization to optional content-guard.
closes #3970

History

#1 Updated by jortel@redhat.com about 1 year ago

  • Subject changed from As a user, the content application authorizes using the content-guard. to As a user, the content guard logic needs to be loaded and used by the content app.
  • Description updated (diff)

#2 Updated by jortel@redhat.com about 1 year ago

  • Description updated (diff)

#3 Updated by jortel@redhat.com about 1 year ago

  • Description updated (diff)

#4 Updated by jortel@redhat.com about 1 year ago

  • Description updated (diff)

#5 Updated by jortel@redhat.com about 1 year ago

  • Checklist item Add decorator added
  • Checklist item Expose decorator in plugin API added
  • Checklist item Integrate into content app. added
  • Tags Pulp 3 added

#6 Updated by daviddavis about 1 year ago

  • Groomed changed from No to Yes
  • Sprint set to Sprint 44

#7 Updated by jortel@redhat.com about 1 year ago

  • Status changed from NEW to ASSIGNED
  • Assignee set to jortel@redhat.com

#8 Updated by jortel@redhat.com about 1 year ago

  • Checklist item Add decorator set to Done
  • Checklist item Expose decorator in plugin API set to Done
  • Checklist item Integrate into content app. set to Done
  • Status changed from ASSIGNED to POST

#9 Updated by jortel@redhat.com about 1 year ago

  • Blocks Story #3972: As a plugin writer, I can define a type of ContentGuard added

#10 Updated by jortel@redhat.com about 1 year ago

  • Blocks Story #4009: Make CertGuard capabilities in Pulp3 added

#11 Updated by rchan 12 months ago

  • Sprint changed from Sprint 44 to Sprint 45

#12 Updated by bmbouter 11 months ago

  • Status changed from POST to MODIFIED

This got merged so moving to MODIFIED and associating.

#13 Updated by bherring 10 months ago

  • Related to Test #4256: As a user, the content guard logic needs to be loaded and used by the content app. added

#14 Updated by bherring 10 months ago

  • Related to Test #4257: QueryExistingArtifacts stage does not prevent duplicates within a stream added

#15 Updated by daviddavis 6 months ago

  • Sprint/Milestone set to 3.0

#16 Updated by bmbouter 6 months ago

  • Tags deleted (Pulp 3)

Please register to edit this issue

Send by e-mail

Also available in: Atom PDF