[one-users] RPC API and PHP (auth pb)

Nicolas Bélan nicolas.belan at gmail.com
Fri Mar 22 08:16:36 PDT 2013


Hello the list,

I am trying (unsuccessfully) to call RPM methods.

The problem is that I can not make my user authenticated by code (while
it is ok with http://localhost:4567/ui)
I am using version 3.8.3.

I am trying to user serveradmin:<user>:<password> with it does not work
as written in the documentation.
Deeply investigating, I found, in
/usr/lib/one/ruby/server_cipher_auth.rb that the third part is a token,
but i am not ruby compliant....
It seems, If i understand, that:
a string is built with: "serveradmin:username:time()+expire"
the serveradmin password is used to create a key.
This key is then used to cipher (salted ?) the previous string.
The result is then appended like that:
"serveradmin:username:cipher(key,serveradmin:username:time()+expire)"
and sent as the first parameter of the rpc call.
Am i completely wrong ?
For example:
serveradmin:user_example:PWyaJz96iwdYldYoPHXWZYkBMbuvKIEXiTVb0WuAHURYuQ2Dzmhnzjm0JDNCMchB

Using perl, I failed to authenticate user ....
using tcpdump, it seems that the third part is quite constant during a
certain laps of time ...
So, I may be wrong with my time() expire part ....
Can you help me writing this part of code ? Perl or PHP are welcome ;)

Thank you for you help

Best regards,
Nicolas.





-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 4474 bytes
Desc: Signature cryptographique S/MIME
URL: <http://lists.opennebula.org/pipermail/users-opennebula.org/attachments/20130322/ac2f7202/attachment-0001.bin>


More information about the Users mailing list