Version bump

Add missing login.logout endpoint
Fix broken config dir backwards compatibility (/opt/trains/config should still be supported)
2025-06-26 23:15:47 +00:00 · 2021-05-11 16:12:48 +03:00 · 2021-05-11 16:12:27 +03:00 · 2021-05-11 16:12:13 +03:00 · 2021-05-04 11:07:38 +03:00 · 2021-05-03 23:23:06 +03:00
7 changed files with 28 additions and 9 deletions
--- a/apiserver/config/basic.py
+++ b/apiserver/config/basic.py
@@ -19,7 +19,7 @@ from pyparsing import (

 from apiserver.utilities import json

-EXTRA_CONFIG_PATHS = ("/opt/clearml/config",)
+EXTRA_CONFIG_PATHS = ("/opt/trains/config", "/opt/clearml/config")
 DEFAULT_PREFIXES = ("clearml", "trains")
 EXTRA_CONFIG_PATH_SEP = ":" if platform.system() != "Windows" else ";"

--- a/apiserver/requirements.txt
+++ b/apiserver/requirements.txt
@@ -12,7 +12,7 @@ funcsigs==1.0.2
 furl>=2.0.0
 gunicorn>=19.7.1
 humanfriendly==4.18
-jinja2==2.10.1
+jinja2==2.11.3
 jsonmodels>=2.3
 jsonschema>=2.6.0
 luqum>=0.10.0
--- a/apiserver/schema/services/login.conf
+++ b/apiserver/schema/services/login.conf
@@ -93,3 +93,19 @@ supported_modes {
        }
    }
 }
+
+logout {
+    authorize: false
+    allow_roles = [ "*" ]
+    "2.13" {
+        description: """ Logout (including SSO, if used)) """
+        request {
+            type: object
+            additionalProperties: false
+        }
+        response {
+            type: object
+            additionalProperties: false
+        }
+    }
+}
--- a/apiserver/services/auth.py
+++ b/apiserver/services/auth.py
@@ -41,14 +41,12 @@ def login(call: APICall, *_, **__):
    )

    # Add authorization cookie
-    call.result.cookies[
-        config.get("apiserver.auth.session_auth_cookie_name")
-    ] = call.result.data_model.token
+    call.result.set_auth_cookie(call.result.data_model.token)


@endpoint("auth.logout", min_version="2.2")
 def logout(call: APICall, *_, **__):
-    call.result.cookies[config.get("apiserver.auth.session_auth_cookie_name")] = None
+    call.result.set_auth_cookie(None)


@endpoint(
--- a/apiserver/services/login/init.py
+++ b/apiserver/services/login/init.py
@@ -1,5 +1,3 @@
-from jsonmodels.fields import BoolField
-
 from apiserver.apimodels.login import (
    GetSupportedModesRequest,
    GetSupportedModesResponse,
@@ -35,3 +33,8 @@ def supported_modes(call: APICall, _, __: GetSupportedModesRequest):
        ),
        authenticated=call.auth is not None,
    )
+
+
+@endpoint("login.logout", min_version="2.13")
+def logout(call: APICall, _, __):
+    call.result.set_auth_cookie(None)
--- a/apiserver/version.py
+++ b/apiserver/version.py
@@ -1 +1 @@
-__version__ = "1.0.0"
+__version__ = "1.0.1"
--- a/docs/apiserver.conf
+++ b/docs/apiserver.conf
@@ -1,8 +1,10 @@
 auth {
    # Fixed users login credentials
    # No other user will be able to login
+    # Note: password may be bcrypt-hashed (generate using `python3 -c 'import bcrypt,base64; print(base64.b64encode(bcrypt.hashpw("password".encode(), bcrypt.gensalt())))'`)
    fixed_users {
        enabled: true
+        pass_hashed: false
        users: [
            {
                username: "jane"
Author	SHA1	Message	Date
allegroai	2216bfe875	Version bump	2021-05-11 16:12:48 +03:00
allegroai	9beefa7473	Add missing login.logout endpoint	2021-05-11 16:12:27 +03:00
allegroai	8ebc334889	Fix broken config dir backwards compatibility (/opt/trains/config should still be supported)	2021-05-11 16:12:13 +03:00
allegroai	e662c850af	Update config file in docs	2021-05-04 11:07:38 +03:00
allegroai	1e5163e530	Upgrade jinja2 version due to CVE-2020-28493	2021-05-03 23:23:06 +03:00