[Pulp-dev] Pulp 3: using JWT to request a JWT
Jeremy Audet
jaudet at redhat.com
Wed Nov 29 18:02:53 UTC 2017
+1. I think one should be able to get a JWT with a JWT. This user
experience:
> I can authenticate any API call with a JWT token.
...is nicer than this user experience:
> I can authenticate any API call with a JWT token. Oh, wait, exept getting
a new JWT token. I wonder why? Is there some security risk here? I wonder
if there's other API calls that also don't let me use JWT tokens? Perhaps I
should use basic auth for all authentication?
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://listman.redhat.com/archives/pulp-dev/attachments/20171129/f8919652/attachment.htm>
More information about the Pulp-dev
mailing list