roer icon indicating copy to clipboard operation
roer copied to clipboard

Published 20 hours ago verified publisher icon spinnaker

Provide OAuth Token

Open idoshamun opened this issue 7 years ago • 3 comments

How can I provide an oauth token? roer is always redirected to the login page

idoshamun avatar Aug 29 '17 09:08 idoshamun

Same problem

cedbossneo avatar Aug 30 '17 08:08 cedbossneo

In 66bada2e66a5c83eb372f5002c2fee10d0609aba, the ability to specify an API session token was added.

It's more of a workaround, but I've done the following to be able to use roer when gate is configured to authenticate with GitHub:

  1. Create a personal access token for the account you wish to login to Spinnaker as (I gave the following permissions: read:org, read:user, user:email)
  2. Use the following script to obtain a session token:
curl -c cookies.jar -Lv https://gate:8084/credentials -H "Authorization: Bearer $GITHUB_PERSONAL_ACCESS_TOKEN”
SPINNAKER_API_SESSION=$(awk '/SESSION/ { print $NF }' cookies.jar)
  1. Use roer with the API session key:
$ SPINNAKER_API=https://gate:8084 roer --as ${SPINNAKER_API_SESSION} app list

nextrevision avatar Nov 22 '17 18:11 nextrevision

Thanks @nextrevision

I tried to replicate this with Gitlab OAUTH and also Gitlab Personal Access Tokens but was unsuccessful.

In the end I found another way to get an existing SESSION ID via Chrome browser.

  1. Sign in to Spinnaker via Deck (I have OAUTH enabled)
  2. Visit https://<your Deck URL>/pipelineTemplates in Chrome.
  3. Open Chrome developer tools.
  4. Reload page.
  5. View Network -> pipelineTemplates
  6. Search through the text for cookie: SESSION=<your session id here>
  7. Continue on with step 3 from above. You may need to export or prefix the roer command with SPINNAKER_API_SESSION.

karlskewes avatar Jul 03 '18 02:07 karlskewes