[openstack-dev] [TripleO][Tuskar] Dealing with passwords in Tuskar-API

Dougal Matthews dougal at redhat.com
Wed Feb 19 19:05:28 UTC 2014


On 19/02/14 18:49, Hugh O. Brock wrote:
> On Wed, Feb 19, 2014 at 06:31:47PM +0000, Dougal Matthews wrote:
>> On 19/02/14 18:29, Jason Rist wrote:
>>> Would it be possible to create some token for use throughout? Forgive
>>> my naivete.
>>
>> I don't think so, the token would need to be understood by all the
>> services that we store passwords for. I may be misunderstanding however.
>>
> Hmm... isn't this approximately what Keystone does? Accept a password
> once from the user and then return session tokens?

Right - but I think the heat template expects passwords, not tokens. I
don't know how easily we can change that.




More information about the OpenStack-dev mailing list