Hide Forgot
Description of problem: user is allowed to add a override for baseurl attribute which is supposed to be restricted Version-Release number of selected component (if applicable): [root@dhcp35-179 ~]# subscription-manager version server type: Red Hat Subscription Management subscription management server: 2.0.21-1 subscription management rules: 5.20 subscription-manager: 1.18.5-1.el6 python-rhsm: 1.18.5-1.el6 How reproducible: Steps to Reproduce: [root@dhcp35-179 ~]# subscription-manager repo-override --add=name:baseurl Error: You must specify a repository to modify [root@dhcp35-179 ~]# curl -X PUT -H "Content-Type:application/json" -k -u admin:admin "https://shwetha-workstation.usersys.redhat.com:8443/candlepin/activation_keys/8a6a39f58aabbc50158b4969d881417/content_overrides" -d '[{"contentLabel":"awesome-os","name":"baseurl","value":"http://test"}]' [ { "contentLabel" : "awesome-os", "name" : "baseurl", "value" : "http://test", "created" : "2016-11-30T09:53:09+0000", "updated" : "2016-11-30T09:53:09+0000" } Actual results: Can be overriden Expected results: Not allowed to override values for: baseurl Additional info:
Why is this a bad thing? Are there not usecases for this, especially with custom (non-Red Hat) products with Sat-6?
Starting in candlepin version 2.0.10-1, the restriction on overriding the baseurl has been lifted against a standalone candlepin server for the benefit of mirror lists in Satellite. See https://trello.com/c/6IKbKppZ/7-work-with-satellite-team-to-design-out-mirror-lists-for-subscription-manager See https://github.com/candlepin/candlepin/commit/bbba2dfc1ba44a16fef3d483caf4e7d4eaf63c10