Selecting “Sign in”, at `fedora.softwarefactory-project.io/zuul/status`, fails with a CSP error

Ask Fedora
1

Should authentication at fedora.softwarefactory-project.io/zuul/status succeed? I ask because .click()ing //button[text()="Sign in"] fails:

23:43:21.644 XHRGET
https://softwarefactory-project.io/auth/realms/SF/.well-known/openid-configuration
CSP

	
GET
	
scheme
	https
host
	softwarefactory-project.io
filename
	/auth/realms/SF/.well-known/openid-configuration
Transferred0 GB (0 GB size)
Referrer Policysame-origin
DNS ResolutionSystem

23:43:21.644 Content-Security-Policy: The page’s settings blocked the loading of a resource (connect-src) at https://softwarefactory-project.io/auth/realms/SF/.well-known/openid-configuration because it violates the following directive: “connect-src 'self' https://centos.softwarefactory-project.io” 2.90a056df.chunk.js:173:90210
23:43:21.644 Uncaught (in promise) Error: Network Error
    onerror oidc-client.min.js:1
    JsonService oidc-client.min.js:1
    getJson oidc-client.min.js:1
    getMetadata oidc-client.min.js:1
    _getMetadataProperty oidc-client.min.js:1
    getAuthorizationEndpoint oidc-client.min.js:1
    createSigninRequest oidc-client.min.js:1
    UserManager oidc-client.min.js:47
    promise callback*T.prototype._signinStart oidc-client.min.js:47
    signinRedirect oidc-client.min.js:47
    signIn AuthContext.js:129
    p AuthContext.js:27
    p AuthContext.js:23
    signIn AuthContext.js:128
    clickOnSignIn Auth.jsx:103
    onClick Auth.jsx:236
    React 12
        A
        S
        M
        T
        Je
        he
        Ct
        Vt
        Ye
        Le
        Ni
        Wi
    unstable_runWithPriority scheduler.production.min.js:19
    React 3
        fu
        De
        Xi
oidc-client.min.js:1:17106
    T AuthContext.js:25
    (Async: promise callback)
    O AuthContext.js:26
    p AuthContext.js:27
    p AuthContext.js:23
    signIn AuthContext.js:128
    clickOnSignIn Auth.jsx:103
    onClick Auth.jsx:236
    React 12
        A
        S
        M
        T
        Je
        he
        Ct
        Vt
        Ye
        Le
        Ni
        Wi
    unstable_runWithPriority scheduler.production.min.js:19
    React 3
        fu
        De
        Xi
2

As far as I’m aware, software factory is not part of Fedora.

As a note, when I pressed ‘sign in’ there is just spun wheels.

3

@theprogram, does pagure.io/fedora-comps/pull-request/1239#comment-228017 not demonstrate otherwise?

Build failed. More information on how to proceed and troubleshoot errors available at fedora.softwarefactory-project.io/zuul/buildset/74b9f19f66034ad99a8c7e2d0fcec2cc.

4

Software Factory’s Documentation — software-factory documentation says it is copyright Red Hat, and then the subdomain fedora.s-f indicates that Fedora uses a part of SF. The login did not look like the Fedora SSO. So I still think it is not Fedora as such. I am however no authority in the subject.

Maybe @kevin will know?

5

@theprogram, what do you see? I’m unable to even access the login page.

6

This is a CI system run by some group in Red Hat that runs on some fedora items to do checks. It’s also going to be retired before too long…

I have no idea what the login there would be, I’ve never had any need to login. All the results should be viewable without logging in.

2 Likes
7

In retrospect, the login button functions if the user has already authenticated at SoftwareFactory’s KeyCloak instance [1] (register via GitHub OAuth2). I can’t be bothered to report (to RHBZ or GH) that login fails when the user isn’t authenticated.

  1. ↩︎