[opensuse-buildservice] Source code download failed with obs server 2.3.6
I have upgraded obs server 2.3.6 and I have failed to download source code from obs webui. It asked Username and Password but my obs username and password didn't work. I observed that it used API public interface to download source code but public interface was blocked when anonymous access was set to disabled. Is there anyway to download without anonymous access? Or is it a bug in my obs configuration or in obs server? -- To unsubscribe, e-mail: opensuse-buildservice+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse-buildservice+owner@opensuse.org
Am Mittwoch, 17. Oktober 2012, 14:48:46 schrieb 김욱중:
I have upgraded obs server 2.3.6 and I have failed to download source code from obs webui.
It asked Username and Password but my obs username and password didn't work.
I observed that it used API public interface to download source code but public interface was blocked when anonymous access was set to disabled.
Is there anyway to download without anonymous access?
Right now not, this is actually a wanted downside of the change to close the /public controller in this particular mode (I should have written that more explicit in the release notes maybe).
Or is it a bug in my obs configuration or in obs server?
No, the webui is currently using /public for anonymous access which is not okay. It should proxy the request instead. That would be the real fix. -- Adrian Schroeter SUSE Linux Products GmbH email: adrian@suse.de -- To unsubscribe, e-mail: opensuse-buildservice+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse-buildservice+owner@opensuse.org
Am Donnerstag, 18. Oktober 2012, 09:34:42 schrieb Adrian Schröter:
Am Mittwoch, 17. Oktober 2012, 14:48:46 schrieb 김욱중:
I have upgraded obs server 2.3.6 and I have failed to download source code from obs webui.
It asked Username and Password but my obs username and password didn't work.
I observed that it used API public interface to download source code but public interface was blocked when anonymous access was set to disabled.
Is there anyway to download without anonymous access?
Right now not, this is actually a wanted downside of the change to close the /public controller in this particular mode (I should have written that more explicit in the release notes maybe).
Or is it a bug in my obs configuration or in obs server?
No, the webui is currently using /public for anonymous access which is not okay. It should proxy the request instead. That would be the real fix.
Hm, I have just tested obs 2.3.6 and current master with allow_anonymous=false setting and it shows me source file contents as it uses the real route as fallback. Can you tell which link exactly you use or some more logs from api and webui? -- Adrian Schroeter SUSE Linux Products GmbH email: adrian@suse.de -- To unsubscribe, e-mail: opensuse-buildservice+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse-buildservice+owner@opensuse.org
I'm sorry for late reply. I clicked 'download icon' at 'Actions' column from 'Sources' tab. The link was 'http://xxx.xxx.xxx.xxx/public/source/Tizen:Base/acl/acl-2.2.49.src.tar.gz?rev=5433944bb7ab5ada6a8e57f80f965196&' The logs are as following. api/log/production.log [INFO |#15514] Processing PublicController#source_file (for 165.213.96.84 at 2012-10-23 09:22:10) [GET] [INFO |#15514] Parameters: {"prj"=>"Tizen:1.0:Base", "rev"=>"3116db267d51a8b1268cec901fabbfef", "file"=>"acl.spec", "pkg"=>"acl"} [ERROR|#15514] No public access is configured [INFO |#15514] Rendering status [INFO |#15514] errorcode 'unknown' - No public access is configured [INFO |#15514] Rendering status (401) [INFO |#15514] Filter chain halted as [:extract_user_public] rendered_or_redirected. [INFO |#15514] Completed in 3ms (View: 1, DB: 0) | 401 Unauthorized [https://10.90.49.127/public/source/Tizen:1.0:Base/acl/acl.spec?rev=3116db267d51a8b1268cec901fabbfef&] webui/log/production.log [INFO |#15506] Completed in 1415ms (View: 1026, DB: 164) | 200 OK [https://10.90.49.127/package/files?package=acl&project=Tizen%3A1.0%3ABase] 2012/10/18 Adrian Schröter <adrian@suse.de>:
Am Donnerstag, 18. Oktober 2012, 09:34:42 schrieb Adrian Schröter:
Am Mittwoch, 17. Oktober 2012, 14:48:46 schrieb 김욱중:
I have upgraded obs server 2.3.6 and I have failed to download source code from obs webui.
It asked Username and Password but my obs username and password didn't work.
I observed that it used API public interface to download source code but public interface was blocked when anonymous access was set to disabled.
Is there anyway to download without anonymous access?
Right now not, this is actually a wanted downside of the change to close the /public controller in this particular mode (I should have written that more explicit in the release notes maybe).
Or is it a bug in my obs configuration or in obs server?
No, the webui is currently using /public for anonymous access which is not okay. It should proxy the request instead. That would be the real fix.
Hm, I have just tested obs 2.3.6 and current master with allow_anonymous=false setting and it shows me source file contents as it uses the real route as fallback.
Can you tell which link exactly you use or some more logs from api and webui?
-- Adrian Schroeter SUSE Linux Products GmbH email: adrian@suse.de
-- To unsubscribe, e-mail: opensuse-buildservice+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse-buildservice+owner@opensuse.org
Am Dienstag, 23. Oktober 2012, 09:48:17 schrieb 김욱중:
I'm sorry for late reply.
I clicked 'download icon' at 'Actions' column from 'Sources' tab.
The link was 'http://xxx.xxx.xxx.xxx/public/source/Tizen:Base/acl/acl-2.2.49.src.tar.gz?rev=5433944bb7ab5ada6a8e57f80f965196&'
Ah, that one. The attach patch is fixing the login problem. A nicer solution would be to proxy the request actually to avoid additional login... but usually this is just the first time for the user. Will be part of 2.3.7 bye adrian
The logs are as following.
api/log/production.log
[INFO |#15514] Processing PublicController#source_file (for 165.213.96.84 at 2012-10-23 09:22:10) [GET] [INFO |#15514] Parameters: {"prj"=>"Tizen:1.0:Base", "rev"=>"3116db267d51a8b1268cec901fabbfef", "file"=>"acl.spec", "pkg"=>"acl"} [ERROR|#15514] No public access is configured [INFO |#15514] Rendering status [INFO |#15514] errorcode 'unknown' - No public access is configured [INFO |#15514] Rendering status (401) [INFO |#15514] Filter chain halted as [:extract_user_public] rendered_or_redirected. [INFO |#15514] Completed in 3ms (View: 1, DB: 0) | 401 Unauthorized [https://10.90.49.127/public/source/Tizen:1.0:Base/acl/acl.spec?rev=3116db267d51a8b1268cec901fabbfef&]
webui/log/production.log
[INFO |#15506] Completed in 1415ms (View: 1026, DB: 164) | 200 OK [https://10.90.49.127/package/files?package=acl&project=Tizen%3A1.0%3ABase]
2012/10/18 Adrian Schröter <adrian@suse.de>:
Am Donnerstag, 18. Oktober 2012, 09:34:42 schrieb Adrian Schröter:
Am Mittwoch, 17. Oktober 2012, 14:48:46 schrieb 김욱중:
I have upgraded obs server 2.3.6 and I have failed to download source code from obs webui.
It asked Username and Password but my obs username and password didn't work.
I observed that it used API public interface to download source code but public interface was blocked when anonymous access was set to disabled.
Is there anyway to download without anonymous access?
Right now not, this is actually a wanted downside of the change to close the /public controller in this particular mode (I should have written that more explicit in the release notes maybe).
Or is it a bug in my obs configuration or in obs server?
No, the webui is currently using /public for anonymous access which is not okay. It should proxy the request instead. That would be the real fix.
Hm, I have just tested obs 2.3.6 and current master with allow_anonymous=false setting and it shows me source file contents as it uses the real route as fallback.
Can you tell which link exactly you use or some more logs from api and webui?
-- Adrian Schroeter SUSE Linux Products GmbH email: adrian@suse.de
-- Adrian Schroeter SUSE Linux Products GmbH email: adrian@suse.de
It works!! Thanks a lot. 2012/10/23 Adrian Schröter <adrian@suse.de>:
Am Dienstag, 23. Oktober 2012, 09:48:17 schrieb 김욱중:
I'm sorry for late reply.
I clicked 'download icon' at 'Actions' column from 'Sources' tab.
The link was 'http://xxx.xxx.xxx.xxx/public/source/Tizen:Base/acl/acl-2.2.49.src.tar.gz?rev=5433944bb7ab5ada6a8e57f80f965196&'
Ah, that one.
The attach patch is fixing the login problem. A nicer solution would be to proxy the request actually to avoid additional login... but usually this is just the first time for the user.
Will be part of 2.3.7
bye adrian
The logs are as following.
api/log/production.log
[INFO |#15514] Processing PublicController#source_file (for 165.213.96.84 at 2012-10-23 09:22:10) [GET] [INFO |#15514] Parameters: {"prj"=>"Tizen:1.0:Base", "rev"=>"3116db267d51a8b1268cec901fabbfef", "file"=>"acl.spec", "pkg"=>"acl"} [ERROR|#15514] No public access is configured [INFO |#15514] Rendering status [INFO |#15514] errorcode 'unknown' - No public access is configured [INFO |#15514] Rendering status (401) [INFO |#15514] Filter chain halted as [:extract_user_public] rendered_or_redirected. [INFO |#15514] Completed in 3ms (View: 1, DB: 0) | 401 Unauthorized [https://10.90.49.127/public/source/Tizen:1.0:Base/acl/acl.spec?rev=3116db267d51a8b1268cec901fabbfef&]
webui/log/production.log
[INFO |#15506] Completed in 1415ms (View: 1026, DB: 164) | 200 OK [https://10.90.49.127/package/files?package=acl&project=Tizen%3A1.0%3ABase]
2012/10/18 Adrian Schröter <adrian@suse.de>:
Am Donnerstag, 18. Oktober 2012, 09:34:42 schrieb Adrian Schröter:
Am Mittwoch, 17. Oktober 2012, 14:48:46 schrieb 김욱중:
I have upgraded obs server 2.3.6 and I have failed to download source code from obs webui.
It asked Username and Password but my obs username and password didn't work.
I observed that it used API public interface to download source code but public interface was blocked when anonymous access was set to disabled.
Is there anyway to download without anonymous access?
Right now not, this is actually a wanted downside of the change to close the /public controller in this particular mode (I should have written that more explicit in the release notes maybe).
Or is it a bug in my obs configuration or in obs server?
No, the webui is currently using /public for anonymous access which is not okay. It should proxy the request instead. That would be the real fix.
Hm, I have just tested obs 2.3.6 and current master with allow_anonymous=false setting and it shows me source file contents as it uses the real route as fallback.
Can you tell which link exactly you use or some more logs from api and webui?
-- Adrian Schroeter SUSE Linux Products GmbH email: adrian@suse.de
-- Adrian Schroeter SUSE Linux Products GmbH email: adrian@suse.de -- To unsubscribe, e-mail: opensuse-buildservice+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse-buildservice+owner@opensuse.org
participants (3)
-
Adrian Schröter
-
UkJung Kim
-
김욱중