Modify

Ticket #1019 (closed defect: duplicate)

Opened 10 years ago

Last modified 6 years ago

Using client cert authentication only requires the use of a "user" and "password" in the bcfg2.conf file.

Reported by: https://www.google.com/accounts/o8/id?id=AItOawnPNO575Ac539IZRvLidywOmgljMJLKo7U Owned by: desai
Priority: major Milestone:
Component: bcfg2-client Version: 1.0
Keywords: Cc:

Description

When using client certs as an authentication method *strictly*, the SSL code still requires that the client set a username and password (as a part of the URL that the code uses to connect to the server). This is because the server is expecting an Authorization header. Even though these values are ignored it is required for a proper session.

This requirement is confusing and undocumented and should probably be removed and/or documented.

I suppose a default username and password can also be used if a client cert is defined and no username and password exist.

Attachments

Change History

comment:1 Changed 6 years ago by solj

  • Status changed from new to closed
  • Resolution set to duplicate

Duplicate (somewhat) of #905.

WARNING! You need to establish a session before you can create or edit tickets. Otherwise the ticket will get treated as spam.

View

Add a comment

Modify Ticket

Change Properties
<Author field>
Action
as closed
The resolution will be deleted. Next status will be 'reopened'
Author


E-mail address and user name can be saved in the Preferences.

 
Note: See TracTickets for help on using tickets.