-
Notifications
You must be signed in to change notification settings - Fork 38.6k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Ensure invalid username/password returns 401 error, not 403 #41775
Ensure invalid username/password returns 401 error, not 403 #41775
Conversation
Hi @CaoShuFeng. Thanks for your PR. I'm waiting for a kubernetes member to verify that this patch is reasonable to test. If it is, they should reply with Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. I understand the commands that are listed here. |
@CaoShuFeng: you can't request testing unless you are a kubernetes member. In response to this comment:
Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. I understand the commands that are listed here. |
/lgtm |
/approve |
looks like lint is unhappy with that var name:
|
5fbe5bb
to
0ec585c
Compare
@liggitt I have updated the var name. Thanks for pointing it out. |
@k8s-merge-robot becomes crazy to comment this pr. |
If a user attempts to use basic auth, and the username/password combination is rejected, the authenticator should return an error. This distinguishes requests that did not provide username/passwrod (and are unauthenticated without error) from ones that attempted to, and failed.
@apelisse the bot has deleted and added the "not approved" comment about 200 times in the last few hours. Did a bad update just roll out? |
@liggitt Look like it stopped? |
@k8s-bot ok to test |
/lgtm |
[APPROVALNOTIFIER] This PR is NOT APPROVED This pull-request has been approved by: CaoShuFeng, liggitt
Needs approval from an approver in each of these OWNERS Files:
You can indicate your approval by writing |
@k8s-bot non-cri e2e test this |
Hi, @deads2k can you add add an approve label for this patch? |
@k8s-bot test this [submit-queue is verifying that this PR is safe to merge] |
Automatic merge from submit-queue |
If a user attempts to use basic auth, and the username/password combination
is rejected, the authenticator should return an error. This distinguishes
requests that did not provide username/passwrod (and are unauthenticated
without error) from ones that attempted to, and failed.
Related to:
#39408