When I use the standard template from github, two URLs are generated, one for up and one for down-scaling the stack. I can issue a POST call to each to trigger the scaling.
My question is, can those URLs be secured somehow, or can anyone just trigger them if they know the URL?
Thanks
Everything in Openstack can be configured to use ssl:
Take a look at the sample heat.conf : heat.conf
[clients]
#
# Options defined in heat.common.config
#
# Type of endpoint in Identity service catalog to use for
# communication with the OpenStack service. (string value)
#endpoint_type=publicURL
# Optional CA cert file to use in SSL connections. (string
# value)
#ca_file=<None>
# Optional PEM-formatted certificate chain file. (string
# value)
#cert_file=<None>
# Optional PEM-formatted file that contains the private key.
# (string value)
#key_file=<None>
# If set, then the server's certificate will not be verified.
# (boolean value)
#insecure=false
It all depends on how you configure your Openstack installation.
Asked: 2015-01-08 14:42:12 -0500
Seen: 707 times
Last updated: Jan 26 '15
