ansible/awx

[python][awxkit] mutual TLS for https authentication via awxkit

Open

#14,323 opened on Aug 8, 2023

View on GitHub
 (1 comment) (1 reaction) (0 assignees)Python (3,333 forks)batch import
communityhelp wantedtype:enhancement

Repository metrics

Stars
 (13,071 stars)
PR merge metrics
 (Avg merge 24d 6h) (30 merged PRs in 30d)

Description

Please confirm the following

  • I agree to follow this project's code of conduct.
  • I have checked the current issues for duplicates.
  • I understand that AWX is open source software provided for free and that I might not receive a timely response.

Feature type

Enhancement to Existing Feature

Feature Summary

Currently, it is possible to access the AWX rest API over http and server-side https with the python awxkit package. I am using AWX behind an access proxy (i.e. teleport) which demands the mutual-TLS https protocol. I am able to access the rest API using curl (and specifying the client-side certificate options). Also, the requests library used by awxkit has a straightforward method of specifying a client-side certificate.

However, the awxkit does not appear to expose this option via its CLI tool. I would like this to be added.

I haven't checked whether the axwkit's python library interface exposes this or not. If not, it would be good to add this functionality here too.

Select the relevant components

  • UI
  • API
  • Docs
  • Collection
  • CLI
  • Other

Steps to reproduce

awx --help

Current results

No option to specify client-side certificates

Sugested feature result

Option to specify client-side certificates should be exposed (both in the CLI and the python lib)

Additional information

This could be a quick fix. I haven't looked at the code myself.

Contributor guide