867564 – RFE: Need to ensure content certificate can only be used on RHUI Consumer it was generated for.

Bug 867564 - RFE: Need to ensure content certificate can only be used on RHUI Consumer it was generated for.

Summary: RFE: Need to ensure content certificate can only be used on RHUI Consumer it ...

Keywords:
Status:	CLOSED NOTABUG
Alias:	None
Product:	Red Hat Update Infrastructure for Cloud Providers
Classification:	Red Hat
Component:	RHUA
Sub Component:
Version:	2.1
Hardware:	Unspecified
OS:	Unspecified
Priority:	high
Severity:	high
Target Milestone:	---
Target Release:	---
Assignee:	James Slagle
QA Contact:	Vratislav Hutsky
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2012-10-17 18:19 UTC by Todd Sanders
Modified:	2023-09-14 23:57 UTC (History)
CC List:	9 users (show)
Fixed In Version:
Doc Type:	Enhancement
Doc Text:
Clone Of:
Environment:
Last Closed:	2021-08-02 13:41:26 UTC
Target Upstream Version:
Embargoed:

Attachments	(Terms of Use)

Description Todd Sanders 2012-10-17 18:19:52 UTC

Description of problem:

Currently, you can register a RHUI consumer @ access.redhat.com, consume a RHUI subscription, and download a content certificate.  There is no protection to ensure that this certificate is not used to download content to multiple RHUAs.  We need to somehow tie this certificate to a particular RHUA.  Is the consumer identity embedded in the certificate?

Filed at the request of cmorgan.

Comment 1 John Matthews 2013-10-31 14:13:38 UTC

Punting to next release.

Comment 8 Red Hat Bugzilla 2023-09-14 23:57:00 UTC

The needinfo request[s] on this closed bug have been removed as they have been unresolved for 500 days

Note You need to log in before you can comment on or make changes to this bug.