Actions
Story #6325
closedCertGuard - Task #6323: [Epic] Move certguard authentication from pulp-content to apache and nginx access scripts
As a user, I have an Nginx config that performs ContentGuard authorization checking
Status:
CLOSED - WONTFIX
Priority:
Normal
Assignee:
-
Category:
-
Sprint/Milestone:
-
Start date:
Due date:
% Done:
0%
Estimated time:
Platform Release:
Groomed:
Yes
Sprint Candidate:
Yes
Tags:
Sprint:
Sprint 68
Quarter:
Description
An access script needs to be added that will perform CertGuard checking in the webserver. This needs to:
- Match the path against the Distribution
- Check if the Distribution has a content guard
- Call permit() on the Content Guard if so
- If it's authorized, reply to Nginx indicating the request can be routed to pulp-content
Updated by dkliban@redhat.com about 4 years ago
- Groomed changed from No to Yes
- Sprint Candidate changed from No to Yes
- Sprint set to Sprint 68
Updated by bmbouter about 4 years ago
- Status changed from NEW to CLOSED - WONTFIX
We are keeping authorization in the Pulp services and not in the webserver themselves. The summary of reasons is here: https://www.redhat.com/archives/pulp-dev/2020-March/msg00035.html As such this story should be closed.
Actions