bmcweb/static/redfish/v1/JsonSchemas/OemAccountService, branch masterOpenBMC Web serverhttps://git.raptorcs.com/git/bmcweb/atom?h=master2019-11-12T07:39:07+00:00TLS method configuration2019-11-12T07:39:07+00:00Zbigniew Kurzynskizbigniew.kurzynski@intel.com2019-10-02T09:22:11+00:00urn:sha1:501f1e58ea6fdf97163ce4ea05fbaf1861a62b79
User is now able to turn on and off the TLS authentication method.
Tested:
No regression found in manual testing. By default everything works
as before, and disabling TLS method prevents user to authenticate
by it.
Tested with Redfish Service Validator, version 1.2.8
Signed-off-by: Zbigniew Kurzynski <zbigniew.kurzynski@intel.com>
Change-Id: Ib7be1af659db568caa7e5b97e3844617586d7754
Auth methods configuration2019-11-07T06:39:29+00:00Zbigniew Kurzynskizbigniew.kurzynski@intel.com2019-11-05T11:57:37+00:00urn:sha1:78158631aeab5b77ea9a5f566508285cb839fadf
Added Oem extension for AccountService allowing user to configure
which authentication methods should be enabled. User is now able
to turn on and off authentication methods like BasicAuth, XToken, etc.
User is not allowed to turn off all of the methods at once - at least
one method has to be active to prevent lock-out. This configuration
is persistent, will be saved on file-system and will be loaded on
bmcweb's restart.
Tested:
No regression found in manual testing. By default everything works as before,
and disabling auth method prevents user to authenticate by it. Tested that
user is not allowed to disable all the methods - either in one PATCH or by
disabling them one at a time.
ServiceValidator run with success.
This change is a fix for this request:
https://gerrit.openbmc-project.xyz/c/openbmc/bmcweb/+/23590/18
which was revert here:
https://gerrit.openbmc-project.xyz/c/openbmc/bmcweb/+/26869
Signed-off-by: Zbigniew Kurzynski <zbigniew.kurzynski@intel.com>
Change-Id: I66b5ad423746f1992070a14f2983a07b1320190e
Revert "Auth methods configuration"2019-11-04T21:25:46+00:00James Feistjames.feist@linux.intel.com2019-11-04T21:19:48+00:00urn:sha1:eecd51a46e6d44ae3408d889ed037f4e4270d653
This reverts commit 0ff64dc2cd3a15b4204a477ad2eb5219d66e6110.
Reason for revert: <breaks redfish validator, <edmx:Reference Uri="/redfish/v1/schema/OemAccountService_v1.xml"> but the file name unversioned static/redfish/v1/schema/OemAccountService.xml>
Change-Id: I696dd09bf519e364f5f529a674e047a8eeead578
Signed-off-by: James Feist <james.feist@linux.intel.com>
Auth methods configuration2019-10-31T17:13:42+00:00Kowalski, Kamilkamil.kowalski@intel.com2019-07-12T07:59:11+00:00urn:sha1:0ff64dc2cd3a15b4204a477ad2eb5219d66e6110
Added Oem extension for AccountService allowing user to configure
which authentication methods should be enabled. User is now able
to turn on and off authentication methods like BasicAuth, XToken, etc.
User is not allowed to turn off all of the methods at once - at least
one method has to be active to prevent lock-out. This configuration
is persistent, will be saved on file-system and will be loaded on
bmcweb's restart.
Tested:
No regression found in manual testing. By default everything works as before,
and disabling auth method prevents user to authenticate by it. Tested that
user is not allowed to disable all the methods - either in one PATCH or by
disabling them one at a time.
ServiceValidator run with success.
Change-Id: I3a775d783ac05998d17b8e91800962bffd8cab52
Signed-off-by: Kowalski, Kamil <kamil.kowalski@intel.com>
Signed-off-by: Zbigniew Kurzynski <zbigniew.kurzynski@intel.com>