Bug 1862998
| Summary: | baremetal: Deploy ironic with HTTP basic_auth | ||
|---|---|---|---|
| Product: | OpenShift Container Platform | Reporter: | Steven Hardy <shardy> |
| Component: | Cloud Compute | Assignee: | Zane Bitter <zbitter> |
| Cloud Compute sub component: | BareMetal Provider | QA Contact: | Daniel <dmaizel> |
| Status: | CLOSED ERRATA | Docs Contact: | |
| Severity: | high | ||
| Priority: | high | CC: | beth.white, rbartal, stbenjam |
| Version: | 4.6 | Keywords: | Triaged |
| Target Milestone: | --- | ||
| Target Release: | 4.6.0 | ||
| Hardware: | Unspecified | ||
| OS: | Unspecified | ||
| Whiteboard: | |||
| Fixed In Version: | Doc Type: | Enhancement | |
| Doc Text: |
Feature: Communication between the baremetal-operator, ironic, and ironic-inspector is now authenticated.
Reason: Previously, any container in the cluster (including user workloads) could trivially make calls to the Ironic APIs to determine information about and take action on the hardware underlying the cluster.
Result: Only the authorised services can use the non-public parts of the Ironic API. Access directly to Ironic for debugging purposes now requires the credentials, which are stored in a Secret in the cluster.
|
Story Points: | --- |
| Clone Of: | Environment: | ||
| Last Closed: | 2020-10-27 16:22:34 UTC | Type: | Bug |
| Regression: | --- | Mount Type: | --- |
| Documentation: | --- | CRM: | |
| Verified Versions: | Category: | --- | |
| oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
| Cloudforms Team: | --- | Target Upstream Version: | |
| Embargoed: | |||
| Bug Depends On: | |||
| Bug Blocks: | 1850653, 1885637 | ||
|
Description
Steven Hardy
2020-08-03 12:52:33 UTC
Since the problem described in this bug report should be resolved in a recent advisory, it has been closed with a resolution of ERRATA. For information on the advisory (OpenShift Container Platform 4.6 GA Images), and where to find the updated files, follow the link below. If the solution does not work for you, open a new bug report. https://access.redhat.com/errata/RHBA-2020:4196 |