Hi, i've running in a strange behavior of broker and
I have a basic remote-auth configured and everthing works
fine since i tried do auth with a invalid user via console and
be able to access it.
Things get interesting when i use curl to access broker,
looks like doesn't matter what if user is in auth file or not,
broker always accept it and give access.
Try login with a invalid user and password. You will be
able to create a namespace and apps
Will be able to access api without password, even access
to namespaces of another users passing User-Agent: Openshift
Could you point me a more secure solution?
dev mailing list
dev lists openshift redhat com