← Back to team overview

openstack team mailing list archive

Thread
Date

Re: State of OpenStack Auth

To: openstack@xxxxxxxxxxxxxxxxxxx
From: Greg <gholt@xxxxxxxxxxxxx>
Date: Thu, 3 Mar 2011 09:40:59 -0600
In-reply-to: <391E8697-C2B4-4A59-B488-6E72ADEA6FBA@gmail.com>

On Mar 2, 2011, at 8:30 PM, Jesse Andrews wrote:

> I would prefer a signature based approach as the default (as signatures limits replay attacks; tokens allow an eavesdropper to make arbitrary requests if they obtain a token).

On the other hand, signatures make simple things difficult, such as quick curl requests, dev testing, etc. The usual tradeoff of security and convenience.

Follow ups

Re: State of OpenStack Auth
From: Jorge Williams, 2011-03-03

References

State of OpenStack Auth
From: Eric Day, 2011-03-01
Re: State of OpenStack Auth
From: Soren Hansen, 2011-03-01
Re: State of OpenStack Auth
From: Eric Day, 2011-03-01
Re: State of OpenStack Auth
From: Soren Hansen, 2011-03-01
Re: State of OpenStack Auth
From: Eric Day, 2011-03-01
Re: State of OpenStack Auth
From: Jorge Williams, 2011-03-02
Re: State of OpenStack Auth
From: Jesse Andrews, 2011-03-03