Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Switch from SIGNATURE_RSA to SIGNATURE_HMAC_SHA1 #1643

Merged
merged 2 commits into from May 15, 2023
Merged

Switch from SIGNATURE_RSA to SIGNATURE_HMAC_SHA1 #1643

merged 2 commits into from May 15, 2023

Conversation

traylenator
Copy link
Contributor

@traylenator traylenator commented Apr 2, 2023
edited

RHEL 9 has a policy of deprecating SHA1 and has removed it from python-oauthlib via the addition of locally added patch.

Switching to SIGNATURE_RSA_HMAC_SHA1 allows this module to be used on RHEL9 when the system package python3-oauthlib-3.1.1-2.el9.noarch.rpm is used.

Here is the patch form RHEL9 python-oauthlib.
0001-Rip-out-RSA-SHA1.patch.txt

@traylenator
Copy link
Contributor Author

Seems you add the label.... ?

@traylenator
Switch from SIGNATURE_RSA to SIGNATURE_RSA_HMAC_SHA1
4e16fff 
RHEL 9 has a policy of deprecating SHA1 and has removed it from
python-oauthlib via the addition of locally added patch.

Switching to SIGNATURE_RSA_HMAC_SHA1 allows this module to be used
on RHEL9 when the system package python3-oauthlib-3.1.1-2.el9.noarch.rpm
is used.
@traylenator traylenator changed the title Switch from SIGNATURE_RSA to SIGNATURE_RSA_SHA256 Switch from SIGNATURE_RSA to SIGNATURE_HMAC_SHA1 Apr 13, 2023
@adehad adehad added the feature label May 15, 2023
adehad
adehad approved these changes May 15, 2023
View reviewed changes
Copy link
Collaborator

@adehad adehad left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Awesome, appreciate it!

@adehad adehad merged commit 3550edd into pycontribs:main May 15, 2023
10 of 12 checks passed
Governa added a commit to Governa/jira that referenced this pull request Jun 1, 2023
@Governa
Allow the user to override the default signature method
fda664f 
PR pycontribs#1643 changed the default signature_method from SIGNATURE_RSA to SIGNATURE_HMAC_SHA1. This was done to keep compatibility with RHEL.

The problem is that some Jira servers don't accept SIGNATURE_HMAC_SHA1 and there's currently no way for the user to choose which method to use.

This PR adds a new, optional, field that can be passed to the `oauth` parameter and allows the user to choose which signature_method they want.
Governa added a commit to Governa/jira that referenced this pull request Jun 1, 2023
@Governa
Allow the user to override the default signature method
05a8465 
PR pycontribs#1643 changed the default signature_method from SIGNATURE_RSA to SIGNATURE_HMAC_SHA1. This was done to keep compatibility with RHEL.

The problem is that some Jira servers don't accept SIGNATURE_HMAC_SHA1 and there's currently no way for the user to choose which method to use.

This PR adds a new, optional, field that can be passed to the `oauth` parameter and allows the user to choose which signature_method they want.
@Governa Governa mentioned this pull request Jun 1, 2023
Closed
Governa added a commit to Governa/jira that referenced this pull request Jun 1, 2023
@Governa
Allow the user to override the default signature method
fb580f0 
PR pycontribs#1643 changed the default signature_method from SIGNATURE_RSA to SIGNATURE_HMAC_SHA1. This was done to keep compatibility with RHEL.

The problem is that some Jira servers don't accept SIGNATURE_HMAC_SHA1 and there's currently no way for the user to choose which method to use.

This PR adds a new, optional, field that can be passed to the oauth parameter and allows the user to choose which signature_method they want.
This was referenced Jun 1, 2023
Closed
Merged
@merickso merickso mentioned this pull request Jun 2, 2023
Closed
4 tasks
@traylenator traylenator deleted the sha256 branch June 3, 2023 18:53
@xdgc
Copy link

xdgc commented Jun 5, 2023
edited

This breaks existing software. Against Jira Server v8.20.10#820010-sha1:ace47f9 and using python-jira 3.5.1, I get oauth_problem=signature_method_rejected. Pinning to 3.5.0, code still works. Client is Ubuntu 20.04.

adehad pushed a commit that referenced this pull request Jun 6, 2023
@Governa
Allow the user to override the default signature method (#1664)
0102232 
PR #1643 changed the default signature_method from SIGNATURE_RSA to SIGNATURE_HMAC_SHA1. This was done to keep compatibility with RHEL.

The problem is that some Jira servers don't accept SIGNATURE_HMAC_SHA1 and there's currently no way for the user to choose which method to use.

This PR adds a new, optional, field that can be passed to the oauth parameter and allows the user to choose which signature_method they want.
@adehad adehad linked an issue Jun 6, 2023 that may be closed by this pull request
signature_method_rejected returned with 3.5.1 but not 3.5.0 #1677
Closed
4 tasks
@kevinAlbs kevinAlbs mentioned this pull request Jun 21, 2023
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@adehad adehad adehad approved these changes

Assignees
No one assigned
Labels
feature
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

signature_method_rejected returned with 3.5.1 but not 3.5.0
3 participants
@traylenator @xdgc @adehad