On Fri, Oct 14, 2022 at 09:10:48PM +0200, Fabio Valentini wrote: > On Fri, Oct 14, 2022 at 8:57 PM Richard W.M. Jones <rjones@xxxxxxxxxx> wrote: > > > > > > It looks like "fedpkg update" in Fedora 37 requires you to copy some > > string into a browser. I'm pretty sure it used to use Kerberos or ssh > > authentication which was somewhat more sensible. > > > > I've got a bunch of scripts that now require manual interaction and a > > browser. How do I make this work without this? > > This sounds like the authentication flow changes in bodhi have > propagated to fedpkg ... > https://lists.fedoraproject.org/archives/list/devel@xxxxxxxxxxxxxxxxxxxxxxx/thread/AT2H4MRGIEC7N6VMUEZRXN7BAA7SGSSR > > According to the responses, it seems like "headless" use of the bodhi > API is not going to be a supported use case for now. There's not really a way I can maintain the OCaml without automation, and I guess similar stacks may be affected. Also the idea that involving a web browser in an authentication flow is secure is, frankly, quite absurd. Rich. -- Richard Jones, Virtualization Group, Red Hat http://people.redhat.com/~rjones Read my programming and virtualization blog: http://rwmj.wordpress.com virt-top is 'top' for virtual machines. Tiny program with many powerful monitoring features, net stats, disk stats, logging, etc. http://people.redhat.com/~rjones/virt-top _______________________________________________ devel mailing list -- devel@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to devel-leave@xxxxxxxxxxxxxxxxxxxxxxx Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/devel@xxxxxxxxxxxxxxxxxxxxxxx Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue
