Remove password confirmation in config app

Small fix to manually clean up temp dir when creating new temp dir, small fix to font awesome icons, change the jwt/keystone validators to not use username/password
2018-07-17 10:57:56 -04:00 · 2018-07-17 10:57:56 -04:00 · f5a8116f5a
commit f5a8116f5a
parent 496d94138c
9 changed files with 61 additions and 96 deletions
--- a/util/config/validators/validate_jwt.py
+++ b/util/config/validators/validate_jwt.py
@ -9,8 +9,6 @@ class JWTAuthValidator(BaseValidator):
  def validate(cls, validator_context, public_key_path=None):
    """ Validates the JWT authentication system. """
    config = validator_context.config
-    user = validator_context.user
-    user_password = validator_context.user_password
    http_client = validator_context.http_client
    jwt_auth_max = validator_context.jwt_auth_max
    config_provider = validator_context.config_provider
@ -31,10 +29,7 @@ class JWTAuthValidator(BaseValidator):
      raise ConfigValidationException('Missing JWT Issuer ID')


-    # TODO(jschorr): fix this
-    return
-
-    override_config_directory = os.path.join(config_provider.get_config_root(), '../stack/')
+    override_config_directory = config_provider.get_config_dir_path()

    # Try to instatiate the JWT authentication mechanism. This will raise an exception if
    # the key cannot be found.
@ -45,31 +40,9 @@ class JWTAuthValidator(BaseValidator):
                             public_key_path=public_key_path,
                             requires_email=config.get('FEATURE_MAILING', True))

-    # Verify that the superuser exists. If not, raise an exception.
-    username = user.username
-    (result, err_msg) = users.verify_credentials(username, user_password)
+    # Verify that we can reach the jwt server
+    (result, err_msg) = users.ping()
    if not result:
-      msg = ('Verification of superuser %s failed: %s. \n\nThe user either does not ' +
-             'exist in the remote authentication system ' +
-             'OR JWT auth is misconfigured') % (username, err_msg)
+      msg = ('Verification of JWT failed: %s. \n\nWe cannot reach the JWT server' +
+             'OR JWT auth is misconfigured') % err_msg
      raise ConfigValidationException(msg)
-
-    # If the query endpoint exists, ensure we can query to find the current user and that we can
-    # look up users directly.
-    if query_endpoint:
-      (results, _, err_msg) = users.query_users(username)
-      if not results:
-        err_msg = err_msg or ('Could not find users matching query: %s' % username)
-        raise ConfigValidationException('Query endpoint is misconfigured or not returning ' +
-                                        'proper users: %s' % err_msg)
-
-      # Make sure the get user endpoint is also configured.
-      if not getuser_endpoint:
-        raise ConfigValidationException('The lookup user endpoint must be configured if the ' +
-                                        'query endpoint is set')
-
-      (result, err_msg) = users.get_user(username)
-      if not result:
-        err_msg = err_msg or ('Could not find user %s' % username)
-        raise ConfigValidationException('Lookup endpoint is misconfigured or not returning ' +
-                                        'properly: %s' % err_msg)