[Openstack] State of OpenStack Auth

Michael Mayo mike at openstack.org
Fri Mar 4 17:34:04 UTC 2011

> Good points above.
> Also good point :)
> Yup.
> Yes, you have a vote, and yes, it counts.

Thank you very much :)

> Would the best option be if the OpenStack API supported both auth
> mechanisms (signature, basic HTTP) and allowed the deployers to pick
> which ones were best for which clients? For instance, if OpenStack
> supported both auth mechanisms simultaneously, mobile apps could
> choose signatures whereas other clients, say a simple web dashboard,
> could choose HTTP basic auth an re-auth every N hours?

I think this is a great idea as long as you can count on all the auth mechanisms being available.  Mobile devs get to reduce the number of HTTP requests they make, and other developers can avoid dealing with request signing.  Everyone wins.  I love it.

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openstack.org/pipermail/openstack/attachments/20110304/9aa53752/attachment.html>

More information about the Openstack mailing list