Project

Profile

Help

Story #5338

As a user I have a token server that manages a user access control

Added by lmjachky 3 months ago. Updated 3 months ago.

Status:
NEW
Priority:
Normal
Assignee:
-
Category:
-
Sprint/Milestone:
-
Start date:
Due date:
% Done:

0%

Platform Release:
Blocks Release:
Target Release - Docker:
Backwards Incompatible:
No
Groomed:
No
Sprint Candidate:
No
Tags:
QA Contact:
Complexity:
Smash Test:
Verified:
No
Verification Required:
No
Sprint:

Description

The server will maintain a record of authorized users within different scopes. A client will need to log in (send an HTTP GET request) with credentials provided in a request header in order to process further with a requested operation.

For example, a user/docker daemon will be able to execute the following command to accomplish an authentication and generate a secure token:

curl -Lv -u <username>:<password> "https://sso.redhat.com/auth/realms/rhcc/protocol/redhat-docker-v2/auth?service=docker-registry&client_id=curl&scope=repository:rhel:pull" 

The fields "<username>" and "<password>" will be managed by the token server. For now, the token server is neither a separate process nor application. Access to different scopes and different type of actions will be granted based on the result of an authentication.


Related issues

Related to Docker Support - Story #4938: As a user i can pull content from an authenticated Pulp registry MODIFIED Actions
Blocked by Pulp - Story #5339: Add support for role based access control NEW Actions

History

#1 Updated by lmjachky 3 months ago

  • Related to Story #4938: As a user i can pull content from an authenticated Pulp registry added

#2 Updated by lmjachky 3 months ago

  • Project changed from Pulp to Docker Support
  • Subject changed from Add support for role based access control to As a user I have a token server that manages a user access control
  • Description updated (diff)

#3 Updated by ipanova@redhat.com 3 months ago

  • Tracker changed from Issue to Story
  • % Done set to 0

#4 Updated by lmjachky 3 months ago

  • Related to Story #5339: Add support for role based access control added

#5 Updated by ipanova@redhat.com about 1 month ago

  • Related to deleted (Story #5339: Add support for role based access control)

#6 Updated by ipanova@redhat.com about 1 month ago

  • Blocked by Story #5339: Add support for role based access control added

Please register to edit this issue

Also available in: Atom PDF