1145769 – [RFE] fence_rhevm should support authentication using cookies

RHEL Engineering is moving the tracking of its product development work on RHEL 6 through RHEL 9 to Red Hat Jira (issues.redhat.com). If you're a Red Hat customer, please continue to file support cases via the Red Hat customer portal. If you're not, please head to the "RHEL project" in Red Hat Jira and file new tickets here. Individual Bugzilla bugs in the statuses "NEW", "ASSIGNED", and "POST" are being migrated throughout September 2023. Bugs of Red Hat partners with an assigned Engineering Partner Manager (EPM) are migrated in late September as per pre-agreed dates. Bugs against components "kernel", "kernel-rt", and "kpatch" are only migrated if still in "NEW" or "ASSIGNED". If you cannot log in to RH Jira, please consult article #7032570. That failing, please send an e-mail to the RH Jira admins at rh-issues@redhat.com to troubleshoot your issue as a user management inquiry. The email creates a ServiceNow ticket with Red Hat. Individual Bugzilla bugs that are migrated will be moved to status "CLOSED", resolution "MIGRATED", and set with "MigratedToJIRA" in "Keywords". The link to the successor Jira issue will be found under "Links", have a little "two-footprint" icon next to it, and direct you to the "RHEL project" in Red Hat Jira (issue links are of type "https://issues.redhat.com/browse/RHEL-XXXX", where "X" is a digit). This same link will be available in a blue banner at the top of the page informing you that that bug has been migrated.

Bug 1145769 - [RFE] fence_rhevm should support authentication using cookies

Summary: [RFE] fence_rhevm should support authentication using cookies

Keywords:
Status:	CLOSED ERRATA
Alias:	None
Product:	Red Hat Enterprise Linux 7
Classification:	Red Hat
Component:	fence-agents
Sub Component:
Version:	7.0
Hardware:	All
OS:	Linux
Priority:	unspecified
Severity:	medium
Target Milestone:	rc
Target Release:	---
Assignee:	Marek Grac
QA Contact:	cluster-qe@redhat.com
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2014-09-23 17:25 UTC by Jaison Raju
Modified:	2021-09-09 11:35 UTC (History)
CC List:	5 users (show)
Fixed In Version:	fence-agents-4.0.11-14.el7
Doc Type:	Bug Fix
Doc Text:	The fence_rhevm fence agent did not support cookie-based authentication, so user authentication was performed in every request. Now, the user needs to authenticate only once, and then an authentication token is used to minimize impact on RHEV-M.
Clone Of:
Environment:
Last Closed:	2015-11-19 12:39:33 UTC
Target Upstream Version:
Embargoed:

Attachments	(Terms of Use)

Links
System	ID	Private	Priority	Status	Summary	Last Updated
Red Hat Knowledge Base (Solution)	5911411	0	None	None	None	2021-03-29 09:46:16 UTC
Red Hat Product Errata	RHBA-2015:2384	0	normal	SHIPPED_LIVE	fence-agents bug fix and enhancement update	2015-11-19 11:04:06 UTC

Description Jaison Raju 2014-09-23 17:25:11 UTC

1. Proposed title of this feature request
[RFE] fence_rhevm should support authentication using cookies

2. Who is the customer behind the request?
Account: BANQUE CARREFOUR DE LA SECURITE SOCIALE 1086995
TAM customer: no
SRM customer: no
Strategic: no

3. What is the nature and description of the request?
fence_rhevm command should be able to authenticate via session cookie .

4. Why does the customer need this? (List the business requirements here)
- By using the cookie, not only do we stop the flooding of authentication messages, we can also limit the stress on the authentication backend (IPA) .
- When the authentication backend fails, the cookie makes sure fencing/monitoring can continue .

5. How would the customer like to achieve this? (List the functional requirements here)
fence_rhevm should have some construct that stores cookie when run once / first time / after previous session cookie expire .
This cookie should be used for next fence commands until a timeout value .

6. For each functional requirement listed, specify how Red Hat and the customer can test to confirm the requirement is successfully implemented.

7. Is there already an existing RFE upstream or in Red Hat Bugzilla?
No

8. Does the customer have any specific timeline dependencies and which release would they like to target (i.e. RHEL5, RHEL6)?
No.

9. Is the sales team involved in this request and do they have any additional input?
No

10. List any affected packages or components.
fence-agents-rhevm

11. Would the customer be able to assist in testing this functionality if implemented?

Comment 2 Marek Grac 2014-10-15 12:25:37 UTC

Patch is in upstream now:

https://git.fedorahosted.org/cgit/fence-agents.git/commit/?id=927f8c0c33d4a7b37b391bd50b3cb2915ab050cf

Comment 6 errata-xmlrpc 2015-11-19 12:39:33 UTC

Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory, and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://rhn.redhat.com/errata/RHBA-2015-2384.html

Note You need to log in before you can comment on or make changes to this bug.