Bug 1285885 - [RFE] SSO integration to the java-sdk
Summary: [RFE] SSO integration to the java-sdk
Keywords:
Status: CLOSED CURRENTRELEASE
Alias: None
Product: ovirt-engine-sdk-java
Classification: oVirt
Component: RFEs
Version: ---
Hardware: Unspecified
OS: Unspecified
medium
medium
Target Milestone: ovirt-4.0.0-beta
: 4.0.0.0
Assignee: Ondra Machacek
QA Contact: movciari
URL:
Whiteboard:
: 1308458 (view as bug list)
Depends On:
Blocks: ovirt-aaa-sso
TreeView+ depends on / blocked
 
Reported: 2015-11-26 21:05 UTC by Alon Bar-Lev
Modified: 2017-02-13 13:18 UTC (History)
10 users (show)

Fixed In Version:
Doc Type: Enhancement
Doc Text:
Clone Of:
Environment:
Last Closed: 2016-08-04 13:26:51 UTC
oVirt Team: Infra
Embargoed:
rule-engine: ovirt-4.0.0+
lsvaty: testing_plan_complete-
mgoldboi: planning_ack+
juan.hernandez: devel_ack+
pstehlik: testing_ack+

Attachments (Terms of Use)


Links
System ID Private Priority Status Summary Last Updated
oVirt gerrit 56109 0 master MERGED Add SSO support 2016-04-20 11:31:25 UTC

Description Alon Bar-Lev 2015-11-26 21:05:49 UTC 
Now that ovirt sso[1] is in place we can integrate the api to use the OAuth2 authentication instead of using the non standard restapi session management, we may even remove this mechanism if not actually required.

The /sso/oauth/token[-http-auth] with grant type [urn:ovirt:params:oauth:grant-type:http] entry points are probably what should be used for user/password authentication or spnego.

Once obtained authorization header of Bearer TOKEN should be used to access restapi.

We will probably require some modification to session timeouts as an extension to OAuth2, let's see what missing.

[1] http://www.ovirt.org/images/4/4c/OVirt_SSO_Specification.pdf
Comment 2 Juan Hernández 2016-04-07 10:42:46 UTC 
*** Bug 1308458 has been marked as a duplicate of this bug. ***
Note You need to log in before you can comment on or make changes to this bug.