[one-users] user token expiration

Hamada, Ondrej ondrej.hamada at acision.com
Mon Aug 18 01:31:05 PDT 2014 

OK, thank you very much.

From: Daniel Molina [mailto:dmolina at opennebula.org]
Sent: Monday, August 18, 2014 10:29 AM
To: Hamada, Ondrej
Cc: Users OpenNebula
Subject: Re: [one-users] user token expiration

Yes, you have to define a high value for that behaviour, or you can modify the code to remove the timestamp check. You can find it in the following line:

https://github.com/OpenNebula/one/blob/master/src/authm_mad/remotes/ssh/ssh_auth.rb#L113

Hope this helps

On 18 August 2014 10:25, Hamada, Ondrej <ondrej.hamada at acision.com<mailto:ondrej.hamada at acision.com>> wrote:
Yes, I know about that option.

If I set the token to ‘0’ or to ‘-1’ – would it make the token duration infinite?
Or do I have to set some super high value there? If I do so – isn’t there any problem with the token number size or wouldn’t it force nebula to do too many checks periodically?

O.

From: Daniel Molina [mailto:dmolina at opennebula.org<mailto:dmolina at opennebula.org>]
Sent: Monday, August 18, 2014 10:21 AM

To: Hamada, Ondrej
Cc: Users OpenNebula
Subject: Re: [one-users] user token expiration

You can use the --time option in the oneuser login command to specify the token duration

--time x                  Token duration in seconds, defaults to 3600 (1 h)

Cheers

On 18 August 2014 10:11, Hamada, Ondrej <ondrej.hamada at acision.com<mailto:ondrej.hamada at acision.com>> wrote:
Hi,
I’m using ‘SSH’ .

O.

From: Daniel Molina [mailto:dmolina at opennebula.org<mailto:dmolina at opennebula.org>]
Sent: Monday, August 18, 2014 9:46 AM
To: Hamada, Ondrej
Cc: Users OpenNebula
Subject: Re: [one-users] user token expiration

Hi,

What authentication driver are you using?

Cheers

On 15 August 2014 15:14, Hamada, Ondrej <ondrej.hamada at acision.com<mailto:ondrej.hamada at acision.com>> wrote:
Hi,

Is it possible to set infinite expiration time on security token? Is there any upper limit on the value of expiry time? I would like to reduce the number of calls to ‘oneuser login’ by our automation accounts.

Ondra
________________________________
This e-mail and any attachment is for authorised use by the intended recipient(s) only. It may contain proprietary material, confidential information and/or be subject to legal privilege. It should not be copied, disclosed to, retained or used by, any other party. If you are not an intended recipient then please promptly delete this e-mail and any attachment and all copies and inform the sender. Thank you for understanding.

_______________________________________________
Users mailing list
Users at lists.opennebula.org<mailto:Users at lists.opennebula.org>
http://lists.opennebula.org/listinfo.cgi/users-opennebula.org



--
--
Daniel Molina
Project Engineer
OpenNebula - Flexible Enterprise Cloud Made Simple
www.OpenNebula.org<http://www.OpenNebula.org> | dmolina at opennebula.org<mailto:dmolina at opennebula.org> | @OpenNebula
________________________________
This e-mail and any attachment is for authorised use by the intended recipient(s) only. It may contain proprietary material, confidential information and/or be subject to legal privilege. It should not be copied, disclosed to, retained or used by, any other party. If you are not an intended recipient then please promptly delete this e-mail and any attachment and all copies and inform the sender. Thank you for understanding.



--
--
Daniel Molina
Project Engineer
OpenNebula - Flexible Enterprise Cloud Made Simple
www.OpenNebula.org<http://www.OpenNebula.org> | dmolina at opennebula.org<mailto:dmolina at opennebula.org> | @OpenNebula
________________________________
This e-mail and any attachment is for authorised use by the intended recipient(s) only. It may contain proprietary material, confidential information and/or be subject to legal privilege. It should not be copied, disclosed to, retained or used by, any other party. If you are not an intended recipient then please promptly delete this e-mail and any attachment and all copies and inform the sender. Thank you for understanding.



--
--
Daniel Molina
Project Engineer
OpenNebula - Flexible Enterprise Cloud Made Simple
www.OpenNebula.org<http://www.OpenNebula.org> | dmolina at opennebula.org<mailto:dmolina at opennebula.org> | @OpenNebula
________________________________
This e-mail and any attachment is for authorised use by the intended recipient(s) only. It may contain proprietary material, confidential information and/or be subject to legal privilege. It should not be copied, disclosed to, retained or used by, any other party. If you are not an intended recipient then please promptly delete this e-mail and any attachment and all copies and inform the sender. Thank you for understanding.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.opennebula.org/pipermail/users-opennebula.org/attachments/20140818/bbbd693e/attachment-0001.htm>

More information about the Users mailing list