Right now people get '*' scopes that's not a good idea...
Fixed a while ago. People still get wide scopes... But not "auth:*", We should work to lock this down further, but for now this have unblocked signing server, as it can use a scope prefix not with temp creds by auth.tc.n
Status: ASSIGNED → RESOLVED
Last Resolved: 3 years ago
Resolution: --- → FIXED
3 years ago
Component: TaskCluster → General
Product: Testing → Taskcluster
Target Milestone: --- → mozilla41
Version: unspecified → Trunk
Resetting Version and Target Milestone that accidentally got changed...
Target Milestone: mozilla41 → ---
Version: Trunk → unspecified
You need to log in before you can comment on or make changes to this bug.