-
Notifications
You must be signed in to change notification settings - Fork 45
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Problem to compare AZF response and string 'Permit' #36
Comments
Thanks! Could you fix this in a PR? |
@aalonsog and @carlospg79, The error still persists for me, then i asked this, do you find a solution? https://stackoverflow.com/questions/49684767/fiware-configure-authzforce-with-pep-proxy |
i checked your stackoverflow questions. What solved my problem is that in keyrock you need to not use admin user. For admin user, all the request are forbidden. also, the authzforce 6.0.0 didn't work also (at least for me) so i used the previous 5.4.0 version. i don't know if it can help you. Last week, new keyrock version has been released, so maybe the best is change to that version. |
@carlospg79 what do you mean with the forbiden requests for the admin user. I'm using the authzforce 5.4.1. And didnt work. |
I’m trying make the Level 2 authorization using PEP, IdM and AZF.
I have created a REST web service that exposes one GET service 'service2/list'. I have created a permission to make a GET to the resource service2/list and a role 'developer', and associated the permission to the role ‘developer’. I created a user too, and I assigned 'developer' and ‘provider’ roles to my user.
I have changed the file /horizon/openstack_dashboard/local/local_settings.py to connect the keyrock with authzforce:
And my PEP configuration:
The call to the resource is intercepted by PEP, and initially it show me a error:
So I activated the debug from authzforce and I checked that everything was working. Then I look into pep files, and I found the file lib/azf.js:
I activated the debug from pep too, and I got it:
As you can see, we received ‘Permit’ as response. After a checked the type of decision, and I saw ‘object’. And for javascript when === is used, object type is different of string type. So I changed the === to == and worked. Another solution is make a parser before compare, to convert the object variable to string.
The text was updated successfully, but these errors were encountered: