Actions
Issue #8816
closed
Syncing a repo with sles_auth_token set on the remote, may try to download kickstart files incorrectly
Start date:
Due date:
Estimated time:
Severity:
2. Medium
Version:
Platform Release:
OS:
Triaged:
Yes
Groomed:
No
Sprint Candidate:
No
Tags:
Katello
Sprint:
Quarter:
Description
If you try to sync: http://distro.ibiblio.org/centos/7.9.2009/os/x86_64/
with the sles_auth_token set to: foo=bar (or any param/value). The Sync will fail with:
403, message='Forbidden', url=URL('http://distro.ibiblio.org/centos/7.9.2009/os/x86_64/LiveOS/squashfs.img/?foo=bar')
Notice that an extra slash is added to the url, it likely should be: http://distro.ibiblio.org/centos/7.9.2009/os/x86_64/LiveOS/squashfs.img?foo=bar
Note that this repo is not actually a SLES repo, and this was discovered accidentally due to katello's aggressive nature of using the sles_auth_token for all get params on a repo, but this will also be tackled (https://projects.theforeman.org/issues/32660)
Actions
.
Don't add a trailing slash any time that sles_auth_token is present
closes: #8816 https://pulp.plan.io/issues/8816