[Openstack] State of OpenStack Auth
Monsyne Dragon
mdragon at rackspace.com
Tue Mar 1 20:57:11 UTC 2011
On 3/1/11 2:53 PM, Soren Hansen wrote:
> On a subject of authentication, I've always been puzzled why the token
> isn't just set as a standard http cookie?
>
> If it were, it would be dead simple to render a bit of HTML and
> interact with the API directly from a web server. The EC2 API can't do
> this because of the rather complex signature mechanism, but we're so
> incredibly close, yet so depressingly far away from being able to do
> this.
Quite true. It would make testing much easier, too.
--
--
-Monsyne Dragon
work: 210-312-4190
mobile 210-441-0965
google voice: 210-338-0336
Confidentiality Notice: This e-mail message (including any attached or
embedded documents) is intended for the exclusive and confidential use of the
individual or entity to which this message is addressed, and unless otherwise
expressly indicated, is confidential and privileged information of Rackspace.
Any dissemination, distribution or copying of the enclosed material is prohibited.
If you receive this transmission in error, please notify us immediately by e-mail
at abuse at rackspace.com, and delete the original message.
Your cooperation is appreciated.
More information about the Openstack
mailing list