Reputation: 188
Harbor Onboard oidc user via API
We are facing the issue while doing onboarding of a oidc user via API. We are calling the same API which called from the UI when we do the same activity from UI.
/c/oidc/onboard
Api is always throwing csrf error. Other APis working fine. We are using admin credential in basic auth in api invokation. After onboarding there will be another application which will be using access token of the onboard user. But we are stuck at onboard.
Upvotes: 0
Views: 796
Answers (1)
Reputation: 5543
A CSRF token is a unique, secret, unpredictable value created by the server-side application and transmitted to the client for subsequent HTTP request made by the client application. The server-side application validates the CSRF token in the subsequence request, and rejects the request if the token is missing or invalid.
So make sure that when you send the request to Harbor you send also the CSRF token.
Upvotes: 0
Related Questions
- Harbor robot account: Error response from daemon: unauthorized: authentication required
- dockerized Keycloak as Idp and Idp Broker (same address and port)
- How to get OIDC provider (keycloak)configuration with the endpoint details?
- How to authorize azure container registry requests from .NET CORE C#
- How to share OIDC auth state across containers in Quarkus
- custom oidc in keycloak
- Keycloak: How can user be filtered for a specific OIDC client by role?
- OpenIddict: Using AddDevelopmentSigningCertificate()
- How can I authenticate at Azure Container registry from an Logic App
- Docker Remote API to login to registry