Slurm-web icon indicating copy to clipboard operation
Slurm-web copied to clipboard
verified publisher icon rackslab

Improve trusted source to avoid login and token manipulation by trusted clients

Open rezib opened this issue 7 years ago • 1 comments

The trusted sources feature can be improved to avoid client going through the login process and manipulating tokens when trusted. This way, clients could behave just like the authentication was disabled on the REST API.

This improvement can probably be achieved by checking the trusted sources at the authentication_verify() decorator.

rezib avatar Feb 23 '18 14:02 rezib

This issue concerns Slurm-web v2 which is not maintained anymore. You are highly encouraged to test the new version v3.0.0 that is not impacted by this issue. The quick start guide for v3.0.0 is available online: https://docs.rackslab.io/slurm-web/install/quickstart.html

Unless someone is motivated to maintain the old version of Slurm-web or you have a justified reason to keep this issue open, it will be closed in a few weeks.

rezib avatar May 15 '24 13:05 rezib

For the reasons explained in the previous comment, I finally close this issue.

rezib avatar Jun 19 '24 09:06 rezib