[RFE] Short lived URL based access to protected content (download selected pkgs from UI)
NOTE: This request will require pulp modifications.
The katello UI would like to support the ability for a user from the UI or the CLI to download specific packages. Since these packages may be protected by certificates, there needs to be a way for teh UI to create a url which bypasses this.
Apache mod_auth_token is one such tool for this type of access. This RFE is for pulp to support a means for katello to create short lived access which bypasses certificate checks and allows direct download.
#1 Updated by Brian Bouterse over 2 years ago
- Subject changed from [RFE] Short lived URL based access to protected content (download selected pkgs from UI) to [RFE] Short lived URL based access to protected content (download selected pkgs from UI)
These changes have been started in Pulp, but I wanted to drop some quick information on it based on my understanding.
I think this would come as an optional feature. Since it involves cryptography to generate the urls we likely wouldn't do it by default. This would mean that Katello would need to add that option.
Also, the url would be a new field in the API response from Pulp, so Katello would need to parse that and somehow present it in the UI
Just some thoughts I wanted to share. You can follow the Pulp progress on its issue: https://pulp.plan.io/issues/1315