openstack team mailing list archive

Thread
Date

Re: State of OpenStack Auth

To: Soren Hansen <soren@xxxxxxxxxx>
From: Eric Day <eday@xxxxxxxxxxxx>
Date: Tue, 1 Mar 2011 12:59:25 -0800
Cc: openstack@xxxxxxxxxxxxxxxxxxx
In-reply-to: <AANLkTi=BN6hboiw4E+E9V6uNQxeWzdywqiMYpEa9_11h@mail.gmail.com>
User-agent: Mutt/1.5.20 (2009-06-14)

Well, hopefully with a shared, modular service, we can add a token
module that uses cookies instead. :)

-Eric

On Tue, Mar 01, 2011 at 09:53:36PM +0100, Soren Hansen wrote:
> On a subject of authentication, I've always been puzzled why the token
> isn't just set as a standard http cookie?
> 
> If it were, it would be dead simple to render a bit of HTML and
> interact with the API directly from a web server. The EC2 API can't do
> this because of the rather complex signature mechanism, but we're so
> incredibly close, yet so depressingly far away from being able to do
> this.
> 
> -- 
> Soren Hansen
> Ubuntu Developer    http://www.ubuntu.com/
> OpenStack Developer http://www.openstack.org/

Follow ups

Re: State of OpenStack Auth
From: Soren Hansen, 2011-03-01

References

State of OpenStack Auth
From: Eric Day, 2011-03-01
Re: State of OpenStack Auth
From: Soren Hansen, 2011-03-01