grant type CLIENT_CREDENTIALS

Question

grant type CLIENT_CREDENTIALS

Allen8975701 opened this issue 2 years ago · 10 comments

Allen8975701 commented 2 years ago

with current implementation, if we use a public client with no secret

then the basic header is this format: 'clientIdabc123:'

It can get token by grant type CLIENT_CREDENTIALS

Answer 1 · 2023-06-29T01:00:52.000Z

Issues go stale after 90d of inactivity.

Mark the issue as fresh by commenting /remove-lifecycle stale.
Stale issues rot after an additional 30d of inactivity and eventually close.
Exclude this issue from closing by commenting /lifecycle frozen.

If this issue is safe to close now please do so with /close.

/lifecycle stale

Answer 2 · 2023-07-04T01:55:15.000Z

/remove-lifecycle stale

Answer 3 · 2023-07-13T15:44:15.000Z

do we have a plan to forbid this case?

Answer 4 · 2023-08-28T18:58:02.000Z

Hey @Allen8975701, I would like to work on this issue, could you please tell me more about it?

You mentioned the basic header format: 'clientIdabc123:', which seems to be a Base64-encoded representation of the client ID without any client secret am I correct?

Answer 5 · 2023-09-05T12:16:14.000Z

yes, you are correct.

Answer 6 · 2023-09-07T14:15:53.000Z

@AryanSharma9917 did you have any update?

Answer 7 · 2023-12-07T01:00:40.000Z

Issues go stale after 90d of inactivity.

Mark the issue as fresh by commenting /remove-lifecycle stale.
Stale issues rot after an additional 30d of inactivity and eventually close.
Exclude this issue from closing by commenting /lifecycle frozen.

If this issue is safe to close now please do so with /close.

/lifecycle stale

Answer 8 · 2024-01-06T08:30:41.000Z

Stale issues rot after 30d of inactivity.

Mark the issue as fresh by commenting /remove-lifecycle rotten.
Rotten issues close after an additional 30d of inactivity.
Exclude this issue from closing by commenting /lifecycle frozen.

If this issue is safe to close now please do so with /close.

/lifecycle rotten
/remove-lifecycle stale

Answer 9 · 2024-02-06T00:00:27.000Z

Rotten issues close after 30d of inactivity.

Reopen the issue by commenting /reopen.
Mark the issue as fresh by commenting /remove-lifecycle rotten.
Exclude this issue from closing again by commenting /lifecycle frozen.

/close

Answer 10 · 2024-02-06T00:00:48.000Z

@openshift-bot: Closing this issue.

In response to this:

Rotten issues close after 30d of inactivity.

Reopen the issue by commenting /reopen.
Mark the issue as fresh by commenting /remove-lifecycle rotten.
Exclude this issue from closing again by commenting /lifecycle frozen.

/close

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository.