[katello-devel] Oauth issue for non-admin users
Dmitri Dolguikh
dmitri at redhat.com
Fri Jul 8 13:59:00 UTC 2011
On 11-07-08 10:57 AM, Lukas Zapletal wrote:
> On 07/08/2011 02:08 PM, Dmitri Dolguikh wrote:
>> The final goal is:
>> - if oauth is used, candlepin doesn't perform any authentication or
>> access control, but rather relies on katello to do both
>> - user identity (username for now) is passed in cp-user/cp-consumer
>> oauth header
>>
>> Devan, do you know where cp folks are in regard to #1?
>
> Hmmm. Well if I try to register a system under regular user account
> (e.g. "bob"), Katello properly sends cp-user header but Candlepin
> replies with Bad Request 400 (user bob not found).
>
> There is no such user ("bob") in Candlepin. Is this correct behavior?
>
According to Devan candlepin-trusts-katello changes are not there yet.
I'd say this is the correct (expected) behaviour for now.
-d
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://listman.redhat.com/archives/katello-devel/attachments/20110708/7638260b/attachment.htm>
More information about the katello-devel
mailing list