[one-users] What happens to JAVA OCA if I turn on certificate based authentication ?
Gian Uberto Lauri
saint at eng.it
Tue Nov 15 10:09:16 PST 2011
On 11/15/11 18:51, Carlos Martín Sánchez wrote:
> Hi,
>
> 2011/11/11 Gian Uberto Lauri <saint at eng.it <mailto:saint at eng.it>>
>
> Sorry, I do not get you. The Client class in Java OCA wants an user
> name and a secret in version 2 and also in version 3 if I am not wrong.
>
>
> Take a look at the javadoc: both parameters can be null, or you can use
> the constructor without any parameters:
> http://opennebula.org/doc/3.0/oca/java/org/opennebula/client/Client.html#Client%28%29
Thank you!
I know how Client class works, and you just confirmed me what I knew. I
will have to keep basic authentication and build up a "local password"
look-up for user already authenticated by their certificate.
That means that either I kill Sunstone or I hack it to do the same kind
of authentication: I don't want these "local passwords" go around the
Internet, or else I was not going to use certificate authentication.
"local password": something I choose and remain within our server(s).
The user has her cert to authenticate herself.
--
ing. Gian Uberto Lauri
Ricercatore / Reasearcher
Laboratorio Ricerca e Sviluppo / Research & Development Lab.
Area Calcolo Distribuito / Distributed Computation Area
GianUberto.Lauri at eng.it
Engineering Ingegneria Informatica spa
Corso Stati Uniti 23/C, 35127 Padova (PD)
Tel. +39-049.8283.571 | main(){printf(&unix["\021%six\012\0"],
Fax +39-049.8283.569 | (unix)["have"]+"fun"-0x60);}
Skype: gian.uberto.lauri | David Korn, AT&T Bell Labs
http://www.eng.it | ioccc best One
Liner, 1987
More information about the Users
mailing list