Bug #34306
New version of Candlepin now has org in entitlement certificate and causes authorization issues
Status:
Closed
Priority:
Normal
Assignee:
Category:
Subscriptions
Target version:
Difficulty:
easy
Triaged:
Yes
Bugzilla link:
Description
With the new build of Candlepin 4.1.10 they have changed the way entitlement certificates are generated. Before they would look like:
Subject: CN=eb48d5a8-b759-417c-97f7-93dc2369de29
Now the new cert looks like:
Subject: O=Default_Organization, CN=eb48d5a8-b759-417c-97f7-93dc2369de29
So we get an unauthorized because of the way we parse the ID which now comes back looking like:
"/O=Default_Organizationeb48d5a8-b759-417c-97f7-93dc2369de29"
This issue is to address the way we grab the CN from the cert so it works for the new version of Candlepin and the older versions.
Associated revisions
History
#1
Updated by Chris Roberts 5 months ago
Updated by - Subject changed from Candlepin now has org in entitlement certificate and causes authorization issues to New version of Candlepin now has org in entitlement certificate and causes authorization issues
#2
Updated by Chris Roberts 5 months ago
- Bugzilla link set to 2044606
#3
Updated by The Foreman Bot 5 months ago
Updated by - Status changed from Assigned to Ready For Testing
- Pull request https://github.com/Katello/katello/pull/9902 added
#4
Updated by The Foreman Bot 5 months ago
- Fixed in Releases Katello 4.5.0 added
#5
Updated by Chris Roberts 5 months ago
- Target version changed from Katello 4.4.0 to Katello 4.3.1
#6
Updated by Chris Roberts 5 months ago
- Status changed from Ready For Testing to Closed
Applied in changeset katello|bc1eef93a9299a8d127f0febeb4d4a2e111f964f.
#7
Updated by Andrew Dewar 5 months ago
Updated by - Triaged changed from No to Yes
#8
Updated by The Foreman Bot 4 months ago
- Pull request https://github.com/Katello/katello/pull/9975 added
Fixes #34306 - Update how we parse CN from subman identity certs