Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Read secret file before each authentication attempt #128

Merged
merged 3 commits into from
Jun 17, 2022
Merged

Read secret file before each authentication attempt #128

merged 3 commits into from
Jun 17, 2022

Conversation

bbetter173
Copy link
Contributor

@bbetter173 bbetter173 commented Apr 21, 2022
edited

This PR removes the secret variable from the controller and instead reads the secret file before each authentication attempt.

Fixes #56 by ensuring that the correct password is used for all reloads.

Relevant varnish docs: https://github.com/varnishcache/varnish-cache/blob/606977bbfb624ead38e9c8648beac0b3906a4294/doc/sphinx/users-guide/run_security.rst#cli-interface-authentication, specifically:

You can change the contents of the secret file while varnishd runs, it is read every time a CLI connection is authenticated.

@mittwald-machine
Copy link
Collaborator

There has not been any activity to this pull request in the last 14 days. It will automatically be closed after 7 more days. Remove the stale label to prevent this.

@bbetter173
Copy link
Contributor Author

@martin-helmich - Sorry to ping, but any chance this could be reviewed before it's closed off as stale? Thanks!

@mittwald-machine
Copy link
Collaborator

There has not been any activity to this pull request in the last 14 days. It will automatically be closed after 7 more days. Remove the stale label to prevent this.

@bbetter173
Copy link
Contributor Author

bbetter173 commented May 29, 2022
edited

@martin-helmich Can we please remove the stale tag?

@martin-helmich
Copy link
Member

Apologies. This should not have gotten stale.

@martin-helmich martin-helmich self-requested a review June 17, 2022 11:36
martin-helmich
martin-helmich approved these changes Jun 17, 2022
View reviewed changes
Copy link
Member

@martin-helmich martin-helmich left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

👍 LGTM -- thanks for your contribution.

@martin-helmich martin-helmich enabled auto-merge (squash) June 17, 2022 11:43
@martin-helmich martin-helmich merged commit e9805c2 into mittwald:master Jun 17, 2022
@robmoore
Copy link

I believe we have been seeing this issue in our environment. It doesn't appear that this change made it to 0.7.0. Is it possible it may be included in a release soon?

@robmoore robmoore mentioned this pull request Aug 16, 2022
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@martin-helmich martin-helmich martin-helmich approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

VLC updated but not working
5 participants
@bbetter173 @mittwald-machine @martin-helmich @robmoore @SwitchTV-BenBettridge