Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Group information not correctly escaped (OA4MP) #1494

Closed
bbockelm opened this issue Jul 18, 2024 · 0 comments · Fixed by #1800
Closed

Group information not correctly escaped (OA4MP) #1494

bbockelm opened this issue Jul 18, 2024 · 0 comments · Fixed by #1800
Assignees
@brianaydemir
Labels
bug Something isn't working origin Issue relating to the origin component
Milestone
v7.12.0

Comments

@bbockelm
Copy link
Collaborator

When the embedded OA4MP issuer is used, it does not correctly escape the generated group path.

For example, I created the following authorization:

   - actions: ["read"]
     prefix: /groupdir/$GROUP

and COManage has me in a group named "CO:COU:Topology Contacts:members:active".

The resulting scope was:

storage.read:/groupdir/CO:COU:Topology Contacts:members:active

Spaces are significant for the scope list -- we should adjust the QDL logic so the resulting scopes are URL-escaped.
@bbockelm bbockelm added bug Something isn't working origin Issue relating to the origin component labels Jul 18, 2024
@bbockelm bbockelm added this to the v7.10.0 milestone Jul 18, 2024
brianaydemir added a commit to brianaydemir/pelicanplatform-pelican that referenced this issue Dec 6, 2024
@brianaydemir
Escape user and group names in issued tokens (PelicanPlatform#1494)
bc2f2b2
@brianaydemir brianaydemir linked a pull request Dec 6, 2024 that will close this issue
Escape user and group names in issued tokens (#1494) #1800
Merged
@brianaydemir brianaydemir modified the milestones: v7.10.0, v7.12.0 Dec 10, 2024
brianaydemir added a commit that referenced this issue Dec 16, 2024
@brianaydemir
Merge pull request #1800 from brianaydemir/issue-1494
18b5ba4 
Escape user and group names in issued tokens (#1494)
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@brianaydemir brianaydemir

Labels
bug Something isn't working origin Issue relating to the origin component
Projects
None yet
Milestone
v7.12.0
Development

Successfully merging a pull request may close this issue.

Escape user and group names in issued tokens (#1494) brianaydemir/pelicanplatform-pelican
3 participants
@bbockelm @brianaydemir @haoming29