Created attachment 1652148 [details] screenshot Description of problem: Self Service Portal login pops up a username/password dialog box on the browser after httpd external authentication is enabled on the Cfme appliance. Version-Release number of selected component (if applicable): 5.10 How reproducible: Always Steps to Reproduce: 1. Enable httpd authentication on the UI appliance 2. Try to login using self-service portal 3. Issue is being faced irrespective of whether its a local user (like: admin) or an external user Actual results: The self-service login pops up a username/password dialogue on the browser Expected results: Additional info: This issue is only faced while trying to login to the self service portal. Attaching screenshot of the view. Issue is not specific to a particular browser
Please retest with 5.10.14
No requestee for needinfo set, can you take a look and determine where this should go?
https://github.com/ManageIQ/manageiq-appliance/pull/272
New commit detected on ManageIQ/manageiq-appliance/master: https://github.com/ManageIQ/manageiq-appliance/commit/e47f2ecda2fd99acf9118913a1947820b8f8ca43 commit e47f2ecda2fd99acf9118913a1947820b8f8ca43 Author: Martin Hradil <mhradil> AuthorDate: Thu Feb 13 20:13:36 2020 +0000 Commit: Martin Hradil <mhradil> CommitDate: Thu Feb 13 20:13:36 2020 +0000 manageiq-external-auth: do NOT require authentication for /api/product_info API has 2 sets of requests which can go in unauthenticated: app/controllers/api/base_controller.rb 25: before_action :require_api_user_or_token, :except => [:options, :product_info] 27: before_action :validate_api_request, :except => [:product_info] 28: before_action :validate_api_action, :except => [:options, :product_info] That's OPTIONS requests, and a GET for /api/product_info. We don't need OPTIONS quite yet (except for CORS preflight, which is not supported for the API currently), but the Service UI is relying on unauthenticated /api/product_info to retrieve the URLs for brand assets (like the login screen logo). Fixes https://bugzilla.redhat.com/show_bug.cgi?id=1790817 TEMPLATE/etc/httpd/conf.d/manageiq-external-auth.conf.erb | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-)
New commit detected on ManageIQ/manageiq-appliance/ivanchuk: https://github.com/ManageIQ/manageiq-appliance/commit/fe254e3689727ca2cb5be3ac7d238270376578a8 commit fe254e3689727ca2cb5be3ac7d238270376578a8 Author: Brandon Dunne <bdunne> AuthorDate: Tue Feb 25 17:29:42 2020 +0000 Commit: Brandon Dunne <bdunne> CommitDate: Tue Feb 25 17:29:42 2020 +0000 Merge pull request #272 from himdel/bz1790817 manageiq-external-auth: do NOT require authentication for /api/product_info (cherry picked from commit 739ae404f7559d3e63d5bd759fad90f68ab99c05) https://bugzilla.redhat.com/show_bug.cgi?id=1790817 TEMPLATE/etc/httpd/conf.d/manageiq-external-auth.conf.erb | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-)
Applied httpd auth and logged in self service portal. It is working fine without any prompt. Build Version:5.11.5.0
Since the problem described in this bug report should be resolved in a recent advisory, it has been closed with a resolution of ERRATA. For information on the advisory, and where to find the updated files, follow the link below. If the solution does not work for you, open a new bug report. https://access.redhat.com/errata/RHBA-2020:2020