When connecting to a websocket proxy using a SPICE HTML5 or noVNC, the websocket proxy needs to get the websocket proxy ticket (host, port, ssl_target) signed using the engine's certificate. The web clients (webadmin/userportal) are using a custom GWT RPC query (SignStringQuery) which is not exposed to REST API. The problem is that currently no other client than webadmin or userportal is able to open a SPICE HTML5 nor noVNC since we can not generate the signed ticket without the proper REST support.
this is required for moVirt console integration too
Verified in rhevm-3.6.3-0.1