FS#63534 - Authentication error in CUPS

Attached to Project: Arch Linux
Opened by Nicolas Fella (nicofee) - Thursday, 22 August 2019, 22:40 GMT
Last edited by Andreas Radke (AndyRTR) - Thursday, 07 November 2019, 21:21 GMT
Task Type Bug Report
Category Packages: Extra
Status Closed
Assigned To No-one
Architecture All
Severity Low
Priority Normal
Reported Version
Due in Version Undecided
Due Date Undecided
Percent Complete 100%
Votes 0
Private No

Details

Description:
When I click 'Add printer' in KDE's print-manager I get a 'Forbidden' error from CUPS. This can be solved by changing 'SystemGroup sys root' to 'SystemGroup sys root wheel' in /etc/cups/cups-files.conf

The same behavior can also be reproduced with the cups web interface

https://unix.stackexchange.com/questions/235477/cups-add-printer-page-returns-forbidden-on-web-interface suggests that Fedora applies this by default

cups version 2.2.12-1
This task depends upon

Closed by  Andreas Radke (AndyRTR)
Thursday, 07 November 2019, 21:21 GMT
Reason for closing:  Fixed
Comment by Andreas Radke (AndyRTR) - Friday, 23 August 2019, 05:53 GMT
Using cups web interface with default behavior it redirects you to enter allowed user name + pw. By default that's the root user.
Check your cupsd.conf(.default). Tune it to your needs and add your user to the allowed group or leave it up to the cups admin user:

# Restrict access to the server...
<Location />
Order allow,deny
</Location>

# Restrict access to the admin pages...
<Location /admin>
Order allow,deny
</Location>

# Restrict access to configuration files...
<Location /admin/conf>
AuthType Default
Require user @SYSTEM
Order allow,deny
</Location>

# Restrict access to log files...
<Location /admin/log>
AuthType Default
Require user @SYSTEM
Order allow,deny
</Location>
Comment by Andreas Radke (AndyRTR) - Thursday, 07 November 2019, 21:20 GMT
https://github.com/apple/cups/pull/5638 implemented in cups 2.3.0 release.

Loading...