openstack team mailing list archive
-
openstack team
-
Mailing list archive
-
Message #01132
Re: State of OpenStack Auth
-
To:
openstack@xxxxxxxxxxxxxxxxxxx
-
From:
Monsyne Dragon <mdragon@xxxxxxxxxxxxx>
-
Date:
Tue, 01 Mar 2011 14:57:11 -0600
-
In-reply-to:
<AANLkTi=BN6hboiw4E+E9V6uNQxeWzdywqiMYpEa9_11h@mail.gmail.com>
-
User-agent:
Mozilla/5.0 (Macintosh; U; Intel Mac OS X 10.6; en-US; rv:1.9.2.13) Gecko/20101207 Lightning/1.0b2 Thunderbird/3.1.7
On 3/1/11 2:53 PM, Soren Hansen wrote:
On a subject of authentication, I've always been puzzled why the token
isn't just set as a standard http cookie?
If it were, it would be dead simple to render a bit of HTML and
interact with the API directly from a web server. The EC2 API can't do
this because of the rather complex signature mechanism, but we're so
incredibly close, yet so depressingly far away from being able to do
this.
Quite true. It would make testing much easier, too.
--
--
-Monsyne Dragon
work: 210-312-4190
mobile 210-441-0965
google voice: 210-338-0336
Confidentiality Notice: This e-mail message (including any attached or
embedded documents) is intended for the exclusive and confidential use of the
individual or entity to which this message is addressed, and unless otherwise
expressly indicated, is confidential and privileged information of Rackspace.
Any dissemination, distribution or copying of the enclosed material is prohibited.
If you receive this transmission in error, please notify us immediately by e-mail
at abuse@xxxxxxxxxxxxx, and delete the original message.
Your cooperation is appreciated.
References
