6:36 p.m.
If passthru authentication is used.. what should be passed into the
XMLRPC login call?
cobbler/modules.conf
[authentication]
module = authn_passthru
remote = xmlrpclib.Server("http://username:password@127.0.0.1/cobbler_api
token = remote.login()
Calling login without a username/password gives a number of parameters
error, calling it with any username and password (even a valid
configfile one) fails. It only seems to work if we go back to
authn_configfile.
Ideally I'd like to use Kerberos/passthru for the webui, and password
authentication on the XMLAPI.
Thanks
Mark Farver
6:42 p.m.
On Tue, Nov 8, 2011 at 6:36 PM, Mark Farver <mark.f(a)directi.com> wrote:
If passthru authentication is used.. what should be passed into the
XMLRPC login call?
cobbler/modules.conf
[authentication]
module = authn_passthru
remote = xmlrpclib.Server("http://username:password@127.0.0.1/cobbler_api
token = remote.login()
Calling login without a username/password gives a number of parameters
error, calling it with any username and password (even a valid
configfile one) fails. It only seems to work if we go back to
authn_configfile.
Ideally I'd like to use Kerberos/passthru for the webui, and password
authentication on the XMLAPI.
Don't pass the username/password in via the URL, just use the remote
function login(username,password) instead. I've got an authn_pam
module coming out soon, which will supplant the passthru module.
authn_passthru is for use with Apache/HTTP basic auth only. Since
we've moved to WSGI with form-based authentication, we no longer use
Apache's basic auth mechanism.
7:56 p.m.
On Tue, Nov 8, 2011 at 6:42 PM, James Cammarata <jimi(a)sngx.net> wrote:
Don't pass the username/password in via the URL, just use the
remote
function login(username,password) instead.
If I don't pass username and password on the URL the call fails with a
401. (Which seems logical.)
Can the webui and API have different authentication providers/modules?
Mark Farver
9:16 p.m.
On Tue, Nov 8, 2011 at 7:56 PM, Mark Farver <mark.f(a)directi.com> wrote:
On Tue, Nov 8, 2011 at 6:42 PM, James Cammarata <jimi(a)sngx.net>
wrote:
> Don't pass the username/password in via the URL, just use the remote
> function login(username,password) instead.
If I don't pass username and password on the URL the call fails with a
401. (Which seems logical.)
Can the webui and API have different authentication providers/modules?
Are you still using authn_passthru? If so, it won't work, you need to
use one of the other modules.
Using the configfile one, it works fine for me:
>> import xmlrpclib
>> remote = xmlrpclib.Server("http://127.0.0.1/cobbler_api")
>> token = remote.login('cobbler','testing')
>> token
'QXdyOx2ixL81YLyAtdEhmKWku5KqXHLS0Q=='
The API does not use a different authentication method from the webui,
since the webui does everything over XMLRPC the same way essentially
as shown above.
4567
days inactive
4567
days old
cobbler@lists.fedorahosted.org
3 comments
2 participants
participants (2)
-
James Cammarata -
Mark Farver