| commit | ae527bf97c8104679be79d04200ae53f8e6b1595 | |
| author | Nicolas Williams <nico@twosigma.com> | |
| Wed, 10 Aug 2022 23:08:03 +0000 (10 18:08 -0500) | ||
| committer | Nicolas Williams <nico@twosigma.com> | |
| Mon, 3 Oct 2022 03:46:37 +0000 (2 22:46 -0500) | ||
| tree | 1493a9cee885572280050580475eb35756358504 | treesnapshot (tar.gz zip) |
| parent | 323f4631a4796f7c90cb082b31ad6b7d8101244a | commitdiff |
bx509d: Add /get-tgts batch end-point
In order to support batch jobs systems that run many users' jobs and
which jobs need credentials, we add a /get-tgts end-point that is a
batched version of the /get-tgt end-point. This end-point returns JSON.
Also, we make GETs optional, default to not-allowed in preference of
POSTs.
We also correct handling of POST (before POSTs with non-zero-length bodies
would cause the server to close the connection), and add additional CSRF
protection features, including the ability to disable all GET requests
for /get-keys and /get-config.
In order to support batch jobs systems that run many users' jobs and
which jobs need credentials, we add a /get-tgts end-point that is a
batched version of the /get-tgt end-point. This end-point returns JSON.
Also, we make GETs optional, default to not-allowed in preference of
POSTs.
We also correct handling of POST (before POSTs with non-zero-length bodies
would cause the server to close the connection), and add additional CSRF
protection features, including the ability to disable all GET requests
for /get-keys and /get-config.
| kdc/Makefile.am | diffblobblamehistory | |
| kdc/bx509d.8 | diffblobblamehistory | |
| kdc/bx509d.c | diffblobblamehistory | |
| tests/kdc/check-bx509.in | diffblobblamehistory |