Ask Your Question
0

Heat scaling - are the scale up and down URLs authenticated?

asked 2015-01-08 14:42:12 -0500

dyasny gravatar image

updated 2015-01-26 14:44:37 -0500

zaneb gravatar image

When I use the standard template from github, two URLs are generated, one for up and one for down-scaling the stack. I can issue a POST call to each to trigger the scaling.

My question is, can those URLs be secured somehow, or can anyone just trigger them if they know the URL?

Thanks

edit retag flag offensive close merge delete

1 answer

Sort by ยป oldest newest most voted
1

answered 2015-01-09 00:12:41 -0500

Everything in Openstack can be configured to use ssl:

Take a look at the sample heat.conf : heat.conf

    [clients]

#
# Options defined in heat.common.config
#

# Type of endpoint in Identity service catalog to use for
# communication with the OpenStack service. (string value)
#endpoint_type=publicURL

# Optional CA cert file to use in SSL connections. (string
# value)
#ca_file=<None>

# Optional PEM-formatted certificate chain file. (string
# value)
#cert_file=<None>

# Optional PEM-formatted file that contains the private key.
# (string value)
#key_file=<None>

# If set, then the server's certificate will not be verified.
# (boolean value)
#insecure=false

It all depends on how you configure your Openstack installation.

edit flag offensive delete link more

Comments

SSL would have been my next question. What I am more interested in are credentials, htaccess or something of the sort, so that only the tenant will be able to POST to the up/down scale URLs

dyasny gravatar imagedyasny ( 2015-01-09 08:06:23 -0500 )edit

Your Answer

Please start posting anonymously - your entry will be published after you log in or create a new account.

Add Answer

Get to know Ask OpenStack

Resources for moderators

Question Tools

1 follower

Stats

Asked: 2015-01-08 14:42:12 -0500

Seen: 707 times

Last updated: Jan 26 '15