Bug 2167635 - [RFE] Registration error should be with correct description like RHEL 7 when self signed certificates in Satellite and insecure option not selected.
Summary: [RFE] Registration error should be with correct description like RHEL 7 when ...
Keywords:
Status: NEW
Alias: None
Product: Red Hat Satellite
Classification: Red Hat
Component: Registration
Version: 6.13.0
Hardware: Unspecified
OS: Unspecified
unspecified
unspecified
Target Milestone: Unspecified
Assignee: satellite6-bugs
QA Contact: Satellite QE Team
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+ depends on / blocked
 
Reported: 2023-02-07 06:43 UTC by Akshay Kapse
Modified: 2023-08-03 17:35 UTC (History)
1 user (show)

Fixed In Version:
Doc Type: If docs needed, set a value
Doc Text:
Clone Of:
Environment:
Last Closed:
Target Upstream Version:
Embargoed:

Attachments (Terms of Use)

Description Akshay Kapse 2023-02-07 06:43:27 UTC 
Description of problem:
Registration error do not show correct description like RHEL 7 for RHEL 8 when self signed certificates in Satellite and insecure option not selected.


Version-Release number of selected component (if applicable):
Satellite 6.13 

How reproducible:
Always

Steps to Reproduce:
1. Install a Satellite 6.13 with self-signed certicates.
2. Register a client with the satellite without insecure option enabled.
3.

Actual results:

1) For RHEL 7 (proper error description):
# curl -sS  'https://<Satellite-hostname>/register?activation_keys=ak&force=true&ignore_subman_errors=true&lifecycle_environment_id=1&location_id=2&operatingsystem_id=1&organization_id=1&setup_insights=true&setup_remote_execution=true&setup_remote_execution_pull=true&update_packages=false' -H 'Authorization: Bearer eyJhbGciOiJIUzI1NiJ9.eyJ1c2VyX2lkIjo0LCJpYXQiOjE2NzU3NTE0MjMsImp0aSI6IjRkYmQ1ZGQxZTIyMDYxMzUxYWI3ODdjZmVkMDA3MWVhZjU5NjdiYTQyNzE0MmNmNzM5NmM0MTdjYmRkNmVkZjgiLCJleHAiOjE2NzU3NjU4MjMsInNjb3BlIjoicmVnaXN0cmF0aW9uI2dsb2JhbCByZWdpc3RyYXRpb24jaG9zdCJ9.lVE4-6ZBj-IT_PmXD9DhFO42ltQsDuPH5hM6IMupbpI' | bash
curl: (60) Peer's certificate issuer has been marked as not trusted by the user.
More details here: http://curl.haxx.se/docs/sslcerts.html

curl performs SSL certificate verification by default, using a "bundle"
 of Certificate Authority (CA) public keys (CA certs). If the default
 bundle file isn't adequate, you can specify an alternate file
 using the --cacert option.
If this HTTPS server uses a certificate signed by a CA represented in
 the bundle, the certificate verification probably failed due to a
 problem with the certificate (it might be expired, or the name might
 not match the domain name in the URL).
If you'd like to turn off curl's verification of the certificate, use
 the -k (or --insecure) option.


2) For RHEL 8 (do not show proper error description):
# curl -sS  'https://<Satellite-hostname>/register?activation_keys=ak&force=true&ignore_subman_errors=true&lifecycle_environment_id=1&location_id=2&operatingsystem_id=1&organization_id=1&setup_insights=true&setup_remote_execution=true&setup_remote_execution_pull=true&update_packages=false' -H 'Authorization: Bearer eyJhbGciOiJIUzI1NiJ9.eyJ1c2VyX2lkIjo0LCJpYXQiOjE2NzU3NTE0MjMsImp0aSI6IjRkYmQ1ZGQxZTIyMDYxMzUxYWI3ODdjZmVkMDA3MWVhZjU5NjdiYTQyNzE0MmNmNzM5NmM0MTdjYmRkNmVkZjgiLCJleHAiOjE2NzU3NjU4MjMsInNjb3BlIjoicmVnaXN0cmF0aW9uI2dsb2JhbCByZWdpc3RyYXRpb24jaG9zdCJ9.lVE4-6ZBj-IT_PmXD9DhFO42ltQsDuPH5hM6IMupbpI' | bash
curl: (60) SSL certificate problem: self signed certificate in certificate chain
More details here: https://curl.haxx.se/docs/sslcerts.html

curl failed to verify the legitimacy of the server and therefore could not
establish a secure connection to it. To learn more about this situation and
how to fix it, please visit the web page mentioned above.


Expected results:

Should show error message like RHEL 7:
~~~
If you'd like to turn off curl's verification of the certificate, use
 the -k (or --insecure) option.
~~~

Additional info:

No impact but simply an improvement request for better usability
Note You need to log in before you can comment on or make changes to this bug.