Comments (8)
We have created an issue in Pivotal Tracker to manage this:
https://www.pivotaltracker.com/story/show/171370824
The labels on this github issue will be updated when the story is started.
from credhub.
Our gut feeling is that this is something that just fell through the cracks. I think this just might not have been a requirement at the time that CredHub was getting rolled out. We will do some more archeology on this, but seems like something we can add.
from credhub.
Did you run into this when building your CredHub web app?
from credhub.
@ankeesler It seems to us that the "authorization code" OAuth grant type is not supported by the Credhub server. I can think of 2 action items for us at this point:
- Fix this code path by returning an actual error when a user tries to use the "auth code" grant type, by saying something like "Error: the authorization code grant flow is not supported", instead of apparently returning nothing.
- Updating the docs to indicate that it's not supported (if they are not already)
from credhub.
@sneal We are trying to get a better gauge of this issue in order to prioritize the story that was created. Would you be able to explain your use case a little more specifically?
from credhub.
@jknostman3 I was attempting to get a Credhub web based admin tool working with individual user accounts in UAA (SAML origin). It unfortunately ended up only worked with a client. I'd like to see the error message cleaned up, it might save someone from having to dive into the code in the future.
We ended up giving granular access via the Credhub CLI which was workable. The annoying part was having to grant each individual developer access to specific folders in Credhub which required us to use UAAC to find every developers UAA id. Assigning groups would be nice here.
from credhub.
@sneal Thanks for the details on your use case. We updated the bug in the backlog to be more focused on a clearer error message. We will let you know when this has been implemented.
from credhub.
Closing this issue out since the Error message was improved and has shipped.
from credhub.
Related Issues (20)
- CAs generated by BOSH do not work correctly when imported into CredHub HOT 7
- credhub regenerate doesn't honor the duration set in bosh-cli for existing certs HOT 3
- Importing a self-signed certificate not possible HOT 6
- https://credhub-api.cfapps.io/ is down HOT 3
- Credhub expires-within-days returns unexpected results HOT 3
- deletion of old credential versions not possible HOT 4
- [Bug] Creating a new version of a certificate does not set flag `certificate_authority` properly HOT 2
- fix for log4j 2.16.0 code has been merged but release not cut based on this fix HOT 1
- CredHub accumulates orphaned data in the the `encrypted_value` table HOT 11
- test
- test 2
- "Illegal character in path" on Windows
- Postgresql database migrations failed with a not empty database HOT 4
- IOException in CertificateDataService.findAllValidMetadata(names) when names.length > 32768 HOT 2
- Leaf certificate expiration reported by API does not account for CA expiration date HOT 4
- Delete method in CredentialDataService not transactional. Possible StaleStateException HOT 2
- JVM error in Credhub logs HOT 2
- Feature Request: allow user to specify password hashing algorithm for related types HOT 5
- CredHub 2.12.59+ docker images do not run successfully HOT 6
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from credhub.