Project

Profile

Help

Story #8217

closed

As a user of single container, I can easily use token auth for container registry API

Added by dkliban@redhat.com over 1 year ago. Updated about 1 year ago.

Status:
CLOSED - DUPLICATE
Priority:
Normal
Assignee:
-
Category:
-
Sprint/Milestone:
-
Start date:
Due date:
% Done:

0%

Estimated time:
Platform Release:
Groomed:
Yes
Sprint Candidate:
No
Tags:
Single Container
Sprint:
Quarter:

Description

The instructions for the all in one container tell the user to provide a setting that disables token auth[0]. When token auth is disabled, RBAC is not used. It would be much better to provide instructions for how the user can enable token auth.

Perhaps it would be possible to enable the all in one container to check if the certs needed for token auth are present. If they are not present, the container would generate certs.

[0] https://pulpproject.org/pulp-in-one-container/

Actions #1

Updated by ipanova@redhat.com over 1 year ago

  • Tags Documentation added
Actions #2

Updated by mdepaulo@redhat.com about 1 year ago

The logic in ./assets/pulpcore-api.prep already checks if the certs exist. If they do not, it does not generate them. (I'm 95% sure of this.)

So we should update the docs on how to put the certs in settings/certs/ , which maps to /etc/pulp/certs/

Actions #3

Updated by mdepaulo@redhat.com about 1 year ago

  • Groomed changed from No to Yes
Actions #4

Updated by mdepaulo@redhat.com about 1 year ago

  • Quarter set to Q2-2021
Actions #5

Updated by mdepaulo@redhat.com about 1 year ago

  • Status changed from NEW to CLOSED - DUPLICATE
Actions #6

Updated by daviddavis about 1 year ago

  • Tags Single Container added
Actions #7

Updated by ipanova@redhat.com about 1 year ago

  • Quarter deleted (Q2-2021)
  • Tags deleted (Documentation)

Also available in: Atom PDF