openstack team mailing list archive

[Justin Santa Barbara <justin@xxxxxxxxxxxx>]

On Wed, Mar 2, 2011 at 8:41 PM, Mark Washenberger <
mark.washenberger@xxxxxxxxxxxxx> wrote:

> Yikes, I'm sorry. I didn't mean to give the impression of promoting bad
> code. I was coming at it from a simplicity perspective because I mistakenly
> thought my approach was cryptographically equivalent, assuming a case where
> the user does not want to skip password injection.
>

No worries - sorry if I was harsh.  I don't really know crypto, but I know
enough to try to 'just do the standard thing'.

... it isn't in the 1.[01] spec so we'd need to agree on a sensible way of
> adding it to the api.  Does anyone know if it would create any compatibility
> problems to support an optional "disable_admin_pass": "True" attribute to
> the /servers POST request?
>

+1 for an option that defaults to false