Create job via API can fail due to authorization bug
Reported by Greg Schueler | November 9th, 2011 @ 09:50 AM | in 1.4.0.2 (closed)
using the job import API, the request may fail due to authorization, with the audit log containing:
2011-11-09 09:22:00,095 - Evaluating Decision for: res<type:job,job:<removed>, group:test> \
subject<Username:<removed> Group:api_token_group> action<create> \
env<http://dtolabs.com/rundeck/env/project:null>: authorized: false: \
No context matches subject or environment => REJECTED_NO_SUBJECT_OR_ENV_FOUND \
(0ms)No context matches subject or environment => REJECTED_NO_SUBJECT_OR_ENV_FOUND
specifically, the
env<http://dtolabs.com/rundeck/env/project:null>
is incorrect
Comments and changes to this ticket
-
Greg Schueler November 9th, 2011 @ 12:13 PM
(from [2661e7797aebb9274d5deb77b936650f075bb997]) Add create action to job auth for default apitoken policy [#469] https://github.com/dtolabs/rundeck/commit/2661e7797aebb9274d5deb77b...
-
Greg Schueler November 9th, 2011 @ 12:14 PM
(from [41b8a3fb03354953fa41f96b72294a7fbd55bb99]) Use job.project not session.project for auth check
Fixes some "null" project auth checks when using token based
API requests[#469] https://github.com/dtolabs/rundeck/commit/41b8a3fb03354953fa41f96b7...
-
Greg Schueler November 9th, 2011 @ 12:14 PM
(from [0d2c682c96e0048e72b8a0feb0004d59bc334024]) Add authorizeProjectResources for multiple resources
don't allow null project argument for authorize* methods
Fix getFrameworkNodeName to properly get rundeck base dir[#469] https://github.com/dtolabs/rundeck/commit/0d2c682c96e0048e72b8a0feb...
-
Greg Schueler November 9th, 2011 @ 12:14 PM
(from [6abb827a3947be716cb1ba6f952ddf6de510f823]) Use frameworkService authorizeProjectResources
don't use session for project value
[#469] https://github.com/dtolabs/rundeck/commit/6abb827a3947be716cb1ba6f9...
-
Greg Schueler November 9th, 2011 @ 12:14 PM
(from [7b38b3e1bc99656927505787b71503a00664f1e4]) Use frameworkService for auth checks [#469] https://github.com/dtolabs/rundeck/commit/7b38b3e1bc99656927505787b...
-
Greg Schueler November 9th, 2011 @ 12:47 PM
- State changed from “new” to “needs_verification”
-
Greg Schueler November 9th, 2011 @ 12:50 PM
- State changed from “needs_verification” to “resolved”
tested with api tests using api token auth
-
Jack Demians April 16th, 2023 @ 02:59 PM
The exchange of business cycles to organizations in a close by country, where the two players hope to profit from at least one of the accompanying elements of vicinity: geographic, transient (time region), social, phonetic, monetary, political, or verifiable linkages. Nearshoring is a subsidiary of the business term offshoring. Conversely, nearshoring implies that the business has moved work to a cheaper association, yet inside its own locale, extensively characterized.
Source: https://mobilunity.com/blog/nearshore-outsourcing-to-ukraine/ -
Thomas Donaldson July 12th, 2023 @ 04:18 AM
Short on time and overwhelmed with assignments? Consider the option to buy cheap assignment online. Several platforms offer a wide range of pre-written assignments at affordable prices. These resources can serve as valuable references and provide insights to aid in your own assignment completion. Take advantage of the convenience and affordability of buying cheap assignments online.
Please Sign in or create a free account to add a new ticket.
With your very own profile, you can contribute to projects, track your activity, watch tickets, receive and update tickets through your email and much more.
Create new ticket
Create your profile
Help contribute to this project by taking a few moments to create your personal profile. Create your profile ยป
(DEPRECATED) Please use github issues for issue tracking at http://github.com/dtolabs/rundeck/issues
Greg Schueler