[one-users] Authentication API

Alberto Zuin - Liste liste at albertozuin.eu
Wed Oct 23 11:45:20 PDT 2013


Hello all,
I'm trying to integrate OpenNebula in an API project (mine) where I 
don't have a user DB and I have to use OpenNebula to authorize users 
like a SSO service.
In other situations, I found an API where I send a token and the 
authentication server answer me with a 200 code if the token is valid 
and the user is authenticated (and maybe with the user id and other 
information), or a 401 code if the token isn't valid.
In OpenNebula documentation I found the one.user.info xml-rpc api, but 
it seems the session input variable is a simple username:password and 
not a real token but in 
http://opennebula.org/documentation:rel4.2:auth_overview the paragraph:

Any interface to OpenNebula (CLI, Sunstone, Ruby or Java OCA) 
communicates with the core using xml-rpc calls, that contain the user's 
session string, which is authenticated by the OpenNebula core comparing 
the username and password with the registered users.

seems to say otherwise.
Can you help me please?
Thanks,
Alberto

-- 
AZ Network Specialist
via Mare, 36A
36030 Lugo di Vicenza (VI)
ITALY
P.I. IT04310790284
http://www.azns.it
Tel +39.3286268626
Fax +39.0492106654



More information about the Users mailing list