Bug 1305932

Summary: No /login page for AEP registry oauth redirects
Product: OpenShift Container Platform Reporter: Aaron Weitekamp <aweiteka>
Component: apiserver-authAssignee: Jordan Liggitt <jliggitt>
Status: CLOSED WORKSFORME QA Contact: weiwei jiang <wjiang>
Severity: high Docs Contact:
Priority: unspecified    
Version: 3.1.0CC: aos-bugs, aweiteka, wsun
Target Milestone: ---   
Target Release: ---   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2016-02-11 16:11:11 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:

Description Aaron Weitekamp 2016-02-09 15:48:43 UTC 
Description of problem:
The Atomic Registry web UI is a cockpit-based service. If authentication is configured for HTPasswd, LDAP or Request Header providers the interface redirects to the oauth /login page. This is not served from AEP so it fails.

Version-Release number of selected component (if applicable):
# oc version
oc v3.1.1.6
kubernetes v1.1.0-origin-1107-g4c8e6f4

How reproducible:
always

Steps to Reproduce:
1. Configure AEP for HTPasswd, LDAP or Request Header identity provider
2. Run registry web UI as a pod via template
3. Launch registry web UI, try to login

Actual results:
Browser redirect fails

Expected results:
Browser should redirect to a login page where credentials are entered, then load registry web UI.

Additional info:
Comment 1 Jordan Liggitt 2016-02-09 16:23:51 UTC 
Can you attach the config you are using?
Comment 2 Jordan Liggitt 2016-02-09 20:17:25 UTC 
I can't recreate with htpasswd or LDAP. Request header auth doesn't use the login page, so it is not expected one would be registered.

Make sure you have "login: true" set in the config.
Comment 3 Jordan Liggitt 2016-02-11 16:11:11 UTC 
closing as unrecreatable. please reopen with additional config/recreation steps if you still see it