Project

Profile

Help

Actions
Send by e-mail Copy link

Story #6325

closed

CertGuard - Task #6323: [Epic] Move certguard authentication from pulp-content to apache and nginx access scripts

As a user, I have an Nginx config that performs ContentGuard authorization checking

Added by bmbouter about 4 years ago. Updated about 4 years ago.

Status:
CLOSED - WONTFIX
Priority:
Normal
Assignee:
-
Category:
-
Sprint/Milestone:
-
Start date:
Due date:
% Done:

0%

Estimated time:
Platform Release:
Groomed:
Yes
Sprint Candidate:
Yes
Tags:
Sprint:
Sprint 68
Quarter:

Description

An access script needs to be added that will perform CertGuard checking in the webserver. This needs to:

  1. Match the path against the Distribution
  2. Check if the Distribution has a content guard
  3. Call permit() on the Content Guard if so
  4. If it's authorized, reply to Nginx indicating the request can be routed to pulp-content
Actions
Copy link
 #1

Updated by bmbouter about 4 years ago

  • Parent issue set to #6323
Actions
Copy link
 #2

Updated by dkliban@redhat.com about 4 years ago

  • Groomed changed from No to Yes
  • Sprint Candidate changed from No to Yes
  • Sprint set to Sprint 68
Actions
Copy link
 #3

Updated by bmbouter about 4 years ago

  • Status changed from NEW to CLOSED - WONTFIX

We are keeping authorization in the Pulp services and not in the webserver themselves. The summary of reasons is here: https://www.redhat.com/archives/pulp-dev/2020-March/msg00035.html As such this story should be closed.

Actions
Send by e-mail Copy link

Also available in: Atom PDF