Project

Profile

Help

Story #5338

closed

As a user I have a token server that manages a user access control

Added by lmjachky almost 3 years ago. Updated over 1 year ago.

Status:
CLOSED - CURRENTRELEASE
Priority:
Normal
Assignee:
-
Sprint/Milestone:
Start date:
Due date:
% Done:

0%

Estimated time:
Platform Release:
Groomed:
No
Sprint Candidate:
No
Tags:
Sprint:
Sprint 89
Quarter:

Description

The server will maintain a record of authorized users within different scopes. A client will need to log in (send an HTTP GET request) with credentials provided in a request header in order to process further with a requested operation.

For example, a user/docker daemon will be able to execute the following command to accomplish an authentication and generate a secure token:

curl -Lv -u <username>:<password> "https://sso.redhat.com/auth/realms/rhcc/protocol/redhat-docker-v2/auth?service=docker-registry&client_id=curl&scope=repository:rhel:pull"

The fields "<username>" and "<password>" will be managed by the token server. For now, the token server is neither a separate process nor application. Access to different scopes and different type of actions will be granted based on the result of an authentication.


Related issues

Related to Container Support - Story #4938: As a user i can pull content from an authenticated Pulp registryCLOSED - CURRENTRELEASElmjachky

Actions
Blocked by Pulp - Story #5339: Add support for role based access controlCLOSED - CURRENTRELEASE

Actions
Actions #1

Updated by lmjachky almost 3 years ago

  • Related to Story #4938: As a user i can pull content from an authenticated Pulp registry added
Actions #2

Updated by lmjachky almost 3 years ago

  • Project changed from Pulp to Docker Support
  • Subject changed from Add support for role based access control to As a user I have a token server that manages a user access control
  • Description updated (diff)
Actions #3

Updated by ipanova@redhat.com almost 3 years ago

  • Tracker changed from Issue to Story
  • % Done set to 0
Actions #4

Updated by lmjachky almost 3 years ago

  • Related to Story #5339: Add support for role based access control added
Actions #5

Updated by ipanova@redhat.com almost 3 years ago

  • Related to deleted (Story #5339: Add support for role based access control)
Actions #6

Updated by ipanova@redhat.com almost 3 years ago

  • Blocked by Story #5339: Add support for role based access control added
Actions #7

Updated by ipanova@redhat.com over 2 years ago

  • Project changed from Docker Support to Container Support
Actions #8

Updated by ipanova@redhat.com about 2 years ago

  • Sprint/Milestone set to 2.2.0
Actions #9

Updated by ipanova@redhat.com over 1 year ago

  • Sprint/Milestone changed from 2.2.0 to 2.3.0
Actions #10

Updated by mdellweg over 1 year ago

  • Status changed from NEW to ASSIGNED
  • Assignee set to mdellweg
Actions #11

Updated by ipanova@redhat.com over 1 year ago

This story might be automatically completed with this PR https://github.com/pulp/pulp_container/pull/202/files, that PR however will require some follow up changes

Actions #13

Updated by ipanova@redhat.com over 1 year ago

  • Status changed from ASSIGNED to NEW
  • Assignee deleted (mdellweg)
Actions #14

Updated by ipanova@redhat.com over 1 year ago

  • Status changed from NEW to MODIFIED
  • Sprint set to Sprint 89
Actions #15

Updated by ipanova@redhat.com over 1 year ago

  • Status changed from MODIFIED to CLOSED - CURRENTRELEASE

Also available in: Atom PDF