Bug 1670709

Summary: should be correct value for redirectURIs of oauthclients
Product: OpenShift Container Platform Reporter: shahan <hasha>
Component: apiserver-authAssignee: Erica von Buelow <evb>
Status: CLOSED ERRATA QA Contact: Chuan Yu <chuyu>
Severity: medium Docs Contact:
Priority: unspecified    
Version: 4.1.0CC: aos-bugs, nagrawal
Target Milestone: ---   
Target Release: 4.1.0   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: Doc Type: If docs needed, set a value
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2019-06-04 10:42:28 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:

Description shahan 2019-01-30 08:36:52 UTC 
Description of problem:
should be correct value for redirectURIs of oauthclients

Version-Release number of selected component (if applicable):
Cluster version is 4.0.0-0.nightly-2019-01-25-205123

How reproducible:
always

Steps to Reproduce:
1. oc get oauthclient openshift-browser-client -o json | jq -r '.redirectURIs'
2. oc get oauthclient |grep openshift-browser-client
3.

Actual results:
1.[
  "https://jian-5-api.qe.devcluster.openshift.com:6443/oauth/token/display",
  "/oauth/token/display"
]
2.
openshift-browser-client       XrKofbrmqDspTiSj_KOyRBGPacs6v_ueFk1bwtI7vaI   FALSE           default         https://jian-5-api.qe.devcluster.openshift.com:6443/oauth/token/display,/oauth/token/display


Expected results:
should have no the '/oauth/token/display' path as redirectURI

Additional info:
Comment 2 shahan 2019-03-12 08:50:20 UTC 
[hasha@fedora_pc ~]$ oc get oauthclient openshift-browser-client -o json | jq -r '.redirectURIs'
[
  "https://openshift-authentication-openshift-authentication.apps.qe-yapei312.qe.devcluster.openshift.com/oauth/token/display"
]
[hasha@fedora_pc ~]$ oc get oauthclient |grep openshift-browser-client
openshift-browser-client       9IgDcNMzBm5SZMN1xpKTqsiaVbmcyXRUETCUQG_VUkg   FALSE           default         https://openshift-authentication-openshift-authentication.apps.qe-yapei312.qe.devcluster.openshift.com/oauth/token/display

clusterversion: 4.0.0-0.nightly-2019-03-06-074438
Comment 5 errata-xmlrpc 2019-06-04 10:42:28 UTC 
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory, and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://access.redhat.com/errata/RHBA-2019:0758