Bug 1841039 - authentication-operator: Add e2e test for password grants to Keycloak being set as OIDC IdP
Summary: authentication-operator: Add e2e test for password grants to Keycloak being s...
Keywords:
Status: CLOSED ERRATA
Alias: None
Product: OpenShift Container Platform
Classification: Red Hat
Component: apiserver-auth
Version: 4.5
Hardware: Unspecified
OS: Unspecified
medium
high
Target Milestone: ---
: 4.7.0
Assignee: Standa Laznicka
QA Contact: pmali
URL:
Whiteboard: LifecycleFrozen
Depends On:
Blocks:
TreeView+ depends on / blocked
 
Reported: 2020-05-28 08:23 UTC by Standa Laznicka
Modified: 2021-02-24 15:13 UTC (History)
5 users (show)

Fixed In Version:
Doc Type: No Doc Update
Doc Text:
Clone Of:
Environment:
Last Closed: 2021-02-24 15:12:15 UTC
Target Upstream Version:
Embargoed:


Attachments (Terms of Use)


Links
System ID Private Priority Status Summary Last Updated
Github openshift cluster-authentication-operator pull 401 0 None closed Bug 1841039: e2e: add a test for password grant checking with keycloak 2021-02-18 04:06:04 UTC
Red Hat Product Errata RHSA-2020:5633 0 None None None 2021-02-24 15:13:02 UTC

Description Standa Laznicka 2020-05-28 08:23:15 UTC
Description of problem:
In 4.5, we added a check for OIDC IdPs to see whether password-grants are allowed on the IdP and added a test for the Gitlab provider being set as an OIDC IdP - https://github.com/openshift/cluster-authentication-operator/pull/248. 

Extend the testing with a positive and negative checks against Keycloak to ensure the feature not breaking in the future.

Comment 4 Michal Fojtik 2020-08-24 13:10:56 UTC
This bug hasn't had any activity in the last 30 days. Maybe the problem got resolved, was a duplicate of something else, or became less pressing for some reason - or maybe it's still relevant but just hasn't been looked at yet. As such, we're marking this bug as "LifecycleStale" and decreasing the severity/priority. If you have further information on the current state of the bug, please update it, otherwise this bug can be closed in about 7 days. The information can be, for example, that the problem still occurs, that you still want the feature, that more information is needed, or that the bug is (for whatever reason) no longer relevant.

Comment 5 Standa Laznicka 2020-08-25 11:19:10 UTC
Still a valid bug that we should address.

Comment 6 Standa Laznicka 2020-08-31 07:16:53 UTC
... but it does not have to be in 4.6.

Comment 17 errata-xmlrpc 2021-02-24 15:12:15 UTC
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory (Moderate: OpenShift Container Platform 4.7.0 security, bug fix, and enhancement update), and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://access.redhat.com/errata/RHSA-2020:5633


Note You need to log in before you can comment on or make changes to this bug.