Context Navigation

← Previous Ticket
Next Ticket →

Ticket #1019 (closed defect: duplicate)

Last modified 8 years ago

Using client cert authentication only requires the use of a "user" and "password" in the bcfg2.conf file.

Reported by:	https://www.google.com/accounts/o8/id?id=AItOawnPNO575Ac539IZRvLidywOmgljMJLKo7U	Owned by:	desai
Priority:	major	Milestone:
Component:	bcfg2-client	Version:	1.0
Keywords:		Cc:

Description

When using client certs as an authentication method *strictly*, the SSL code still requires that the client set a username and password (as a part of the URL that the code uses to connect to the server). This is because the server is expecting an Authorization header. Even though these values are ignored it is required for a proper session.

This requirement is confusing and undocumented and should probably be removed and/or documented.

I suppose a default username and password can also be used if a client cert is defined and no username and password exist.

Attachments

Change History

comment:1 Changed 8 years ago by solj

Status changed from new to closed
Resolution set to duplicate

Duplicate (somewhat) of #905.

WARNING! You need to establish a session before you can create or edit tickets. Otherwise the ticket will get treated as spam.

View ↑

Add a comment

You may use WikiFormatting here.

Modify Ticket

Change Properties

Summary:
Type:		Priority:
Milestone:		Component:
Version:		Keywords:
Add/Remove from Cc:	<Author field>

Action

leave as closed

reopen The resolution will be deleted. Next status will be 'reopened'

Author

Your email or username:

E-mail address and user name can be saved in the Preferences.

Attachments ↑

Note: See TracTickets for help on using tickets.

Download in other formats: