Bug 858550

Summary: RHEVM_SDK: Document session based authentication
Product: Red Hat Enterprise Virtualization Manager Reporter: Michael Pasternak <mpastern>
Component: DocumentationAssignee: Andrew Burden <aburden>
Status: CLOSED CURRENTRELEASE QA Contact: ecs-bugs
Severity: medium Docs Contact:
Priority: low    
Version: 3.2.0CC: acathrow, alyoung, bazulay, dyasny, gklein, mpastern, sgordon, yeylon
Target Milestone: ---Keywords: Documentation, Reopened
Target Release: 3.2.0   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2013-06-14 02:19:32 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:

Description Michael Pasternak 2012-09-19 06:41:01 UTC
See "#740756 - (stateful_auth_rest) PRD31 - Implement session based authentication for the RESTful API" for more details

Comment 2 Stephen Gordon 2012-10-30 18:21:37 UTC
Deferring rectification of the issue I raise in comment # 1 for consideration in future release scoping.

Comment 3 Stephen Gordon 2012-11-08 15:14:10 UTC
Re-opened for 3.2.0 scoping, flags will follow.

Comment 4 Andrew Burden 2013-02-18 03:45:59 UTC
Change made as suggested.
Have added the following to 'persistent_auth':
"This parameter is optional and defaults to False. "

Change can be viewed here:
http://documentation-devel.engineering.redhat.com/docs/en-US/Red_Hat_Enterprise_Virtualization/3.2/html-single/Developer_Guide/index.html#Accessing_the_Python_Entry_Point

Comment 5 Michael Pasternak 2013-02-18 08:51:57 UTC
Hi,

i have tiny comment on this section:

insecure - Specifies whether or not the connection needs to be secured. Valid values are True and False. If the insecure parameter is set to False - which is the default - then the ca_file, key_file, and cert_file must be supplied to secure the connection. 

=> if insecure=False, only ca_file is mandatory, key_file/cert_file are still optional,

also the meaning of insecure flag is "do not throw error when SSL and no ca_file" is provided.

Comment 6 Andrew Burden 2013-02-22 04:48:36 UTC
Thanks Michael.

Changes made as suggested. I also added a para about man-in-the-middle attacks for 'insecure'.

Changes can be viewed at:
http://documentation-devel.engineering.redhat.com/docs/en-US/Red_Hat_Enterprise_Virtualization/3.2/html-single/Developer_Guide/index.html#Accessing_the_Python_Entry_Point