openstack team mailing list archive

Thread
Date

Re: Should the OpenStack API re-use the EC2 credentials?

To: Justin Santa Barbara <justin@xxxxxxxxxxxx>
From: Chuck Thier <cthier@xxxxxxxxx>
Date: Wed, 23 Feb 2011 21:51:31 -0600
Cc: openstack@xxxxxxxxxxxxxxxxxxx
In-reply-to: <AANLkTik94ozU0TYq3SYOSe7ZT+0HnTkGONq0EzOO9dvu@mail.gmail.com>

>
>
> However, I think we want the same credentials for users ('username' &
> 'password'), irrespective of the API (or auth protocol) they're using.  I
> think the weird terminology is what got us into the odd situation in which
> we now find ourselves where there are two sets of credentials (and one set
> exposes the secret of the other set!)
>
>
The exposing of the secret is not true, they are just named differently.
 Lets pretend you want to generalize the naming of everything via the EC2
api (api_key, api_secret).  If you switch to using OpenStack auth, then you
would send the api_key as the username, and the api_secret as the api_key.
There is no exposure of the secret key.

--
Chuck

Follow ups

Re: Should the OpenStack API re-use the EC2 credentials?
From: Justin Santa Barbara, 2011-02-24

References

Should the OpenStack API re-use the EC2 credentials?
From: Justin Santa Barbara, 2011-02-24
Re: Should the OpenStack API re-use the EC2 credentials?
From: Chuck Thier, 2011-02-24
Re: Should the OpenStack API re-use the EC2 credentials?
From: Justin Santa Barbara, 2011-02-24