Public bug reported: [Impact]
* Python handling of macraroons is not yet available in Trusty. From the description: Macaroons, like cookies, are a form of bearer credential. Unlike opaque tokens, macaroons embed caveats that define specific authorization requirements for the target service, the service that issued the root macaroon and which is capable of verifying the integrity of macaroons it receives. Macaroons allow for delegation and attenuation of authorization. They are simple and fast to verify, and decouple authorization policy from the enforcement of that policy. * Modern entitlement handling is important and shall be used in as a dependency of ubuntu-advantage-tools will deliver the abilty to enable Ubuntu Advantage support entitlement * The packages do not exist in Trusty yet, so this is no update, but instead will hit xenial new-queue. * The developer working on UA Advantage client confirmed that the versions in Xenial will be sufficient. Therefore we would want to backport the Xenial versions to Trusty which will also make it more easy to keep a sane upgrade path. [Test Case] * Use pymacarons e.g. via the quick start entry in the upstram project https://github.com/ecordell/pymacaroons#quickstart * Since all of this is for the new UA-Tools to work on Trusty we can also ask Chad Smith to run tests with UA-Tools there. [Regression Potential] * Things might not work as expected, but an actual regression is near impossible since the packages are NEW to trusty. The one potential regression that comes to mind is that programs could have had made "try ... from pymacaron import API, letsgo; except: fallback". This would then no more use the fallback code, but given that there was no dependency to it back in Trusty this is very unlikely. Even today the following searches are not too crowded: https://codesearch.debian.net/search?q=import+pymacaroons https://codesearch.debian.net/search?q=from+pymacaroons And reverse depends show only snapcraft on top of that in Ubuntu TL;DR a theoretical risk exists, but I really thinks it is not real to bite us. [Other Info] * There is also a MIR going on to promote those packages to main in Xenial / Trusty. See bug 1746772 bug 1621386 and bug 1817327 * There is a PPA that ensures buildability and can be used for further pre-checks if needed It is at https://launchpad.net/~ci-train-ppa-service/+archive/ubuntu/3668 ** Affects: libsodium (Ubuntu) Importance: Undecided Status: Fix Released ** Affects: pymacaroons (Ubuntu) Importance: Undecided Status: Fix Released ** Affects: python-libnacl (Ubuntu) Importance: Undecided Status: Fix Released ** Affects: libsodium (Ubuntu Trusty) Importance: Undecided Status: In Progress ** Affects: pymacaroons (Ubuntu Trusty) Importance: Undecided Status: In Progress ** Affects: python-libnacl (Ubuntu Trusty) Importance: Undecided Status: In Progress ** Changed in: pymacaroons (Ubuntu) Status: New => In Progress ** Also affects: python-libnacl (Ubuntu) Importance: Undecided Status: New ** Also affects: libsodium (Ubuntu) Importance: Undecided Status: New ** Changed in: python-libnacl (Ubuntu) Status: New => In Progress ** Changed in: libsodium (Ubuntu) Status: New => In Progress ** Also affects: libsodium (Ubuntu Trusty) Importance: Undecided Status: New ** Also affects: python-libnacl (Ubuntu Trusty) Importance: Undecided Status: New ** Also affects: pymacaroons (Ubuntu Trusty) Importance: Undecided Status: New ** Changed in: libsodium (Ubuntu) Status: In Progress => Fix Released ** Changed in: libsodium (Ubuntu Trusty) Status: New => In Progress ** Changed in: pymacaroons (Ubuntu) Status: In Progress => Fix Released ** Changed in: pymacaroons (Ubuntu Trusty) Status: New => In Progress ** Changed in: python-libnacl (Ubuntu) Status: In Progress => Fix Released ** Changed in: python-libnacl (Ubuntu Trusty) Status: New => In Progress -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1817665 Title: Please SRU the pymacaroons stack to Trusty To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/libsodium/+bug/1817665/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
