Revision f1d243bd
| b/doc/rapi.rst | ||
|---|---|---|
| 16 | 16 |
which is used by default, can also be disabled by passing command line |
| 17 | 17 |
parameters. |
| 18 | 18 |
|
| 19 |
.. _rapi-users: |
|
| 19 | 20 |
|
| 20 | 21 |
Users and passwords |
| 21 | 22 |
------------------- |
| ... | ... | |
| 64 | 65 |
jessica {HA1}7046452df2cbb530877058712cf17bd4 write
|
| 65 | 66 |
|
| 66 | 67 |
# Monitoring can query for values |
| 67 |
monitoring {HA1}ec018ffe72b8e75bb4d508ed5b6d079c query
|
|
| 68 |
monitoring {HA1}ec018ffe72b8e75bb4d508ed5b6d079c read
|
|
| 68 | 69 |
|
| 69 |
# A user who can query and write |
|
| 70 |
superuser {HA1}ec018ffe72b8e75bb4d508ed5b6d079c query,write
|
|
| 70 |
# A user who can read and write (the former is implied by granting |
|
| 71 |
# write access) |
|
| 72 |
superuser {HA1}ec018ffe72b8e75bb4d508ed5b6d079c read,write
|
|
| 71 | 73 |
|
| 72 | 74 |
|
| 73 | 75 |
.. [#pwhash] Using the MD5 hash of username, realm and password is |
| b/doc/security.rst | ||
|---|---|---|
| 98 | 98 |
---------- |
| 99 | 99 |
|
| 100 | 100 |
Starting with Ganeti 2.0, Remote API traffic is encrypted using SSL/TLS |
| 101 |
by default. It supports Basic authentication as per :rfc:`2617`. |
|
| 101 |
by default. It supports Basic authentication as per :rfc:`2617`. Users |
|
| 102 |
can be granted different capabilities. Details can be found in the |
|
| 103 |
:ref:`RAPI documentation <rapi-users>`. |
|
| 102 | 104 |
|
| 103 | 105 |
Paths for certificate, private key and CA files required for SSL/TLS |
| 104 | 106 |
will be set at source configure time. Symlinks or command line |
Also available in: Unified diff