github/zot
1
0
Fork 0
mirror of https://github.com/project-zot/zot.git synced 2026-06-15 20:07:55 +08:00
Code Issues Packages Projects Releases Wiki Activity

fix(authn): session authn is skipped when anonymous policy is configured (#1647)

Browse Source 
closes: #1642

Signed-off-by: Petu Eusebiu <peusebiu@cisco.com>
This commit is contained in:
peusebiu
2023-07-27 19:55:25 +03:00
committed by GitHub
parent abba6aa3cf
commit 635d71853e
5 changed files with 1063 additions and 819 deletions
Download Patch File Download Diff File Expand all files Collapse all files
pkg/api/controller.go
+1 -2
View File
@@ -182,8 +182,7 @@ func (c *Controller) Run(reloadCtx context.Context) error {
if c.Config.HTTP.TLS.CACert != "" {
clientAuth := tls.VerifyClientCertIfGiven
if (c.Config.HTTP.Auth == nil || c.Config.HTTP.Auth.HTPasswd.Path == "") &&
!c.Config.HTTP.AccessControl.AnonymousPolicyExists() {
if !c.Config.IsBasicAuthnEnabled() && !c.Config.HTTP.AccessControl.AnonymousPolicyExists() {
clientAuth = tls.RequireAndVerifyClientCert
}