The communication with the servers is not authenticated with macaroons
Bug #1586910 reported by
Leo Arias
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
Snapcraft |
Fix Released
|
High
|
Leo Arias | ||
snapcraft (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned | ||
Xenial |
Fix Released
|
Undecided
|
Unassigned | ||
Yakkety |
Fix Released
|
Undecided
|
Unassigned |
Bug Description
The snapcraft interaction with the servers is currently usingn oauth. The servers now support macaroons authentication, and we must use it for all the snapcraft commands.
[Impact]
* No visual impact for users, the commands are untouched.
* This change improves the security of the communications with the servers.
* Users who have logged in with previous versions will have to log out and log in again.
[Test Case]
* Run snapcraft login with and without one-time password.
* Upload a snap.
* Build the 96boards demo, in order to download a snap.
[Regression Potential]
* The existing features that interact with the servers might fail: login, upload, download.
Changed in snapcraft: | |
status: | New → In Progress |
importance: | Undecided → High |
assignee: | nobody → Leo Arias (elopio) |
description: | updated |
Changed in snapcraft: | |
milestone: | none → 2.10 |
Changed in snapcraft: | |
status: | In Progress → Fix Committed |
Changed in snapcraft (Ubuntu Xenial): | |
milestone: | none → xenial-updates |
Changed in snapcraft: | |
status: | Fix Committed → Fix Released |
To post a comment you must log in.
https:/ /github. com/ubuntu- core/snapcraft/ pull/532