cloudstack-issues mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Abhinandan Prateek (JIRA)" <j...@apache.org>
Subject [jira] [Updated] (CLOUDSTACK-4493) registerSSHKeyPair API doc contains wrong API response (private key)
Date Thu, 17 Oct 2013 16:27:46 GMT

     [ https://issues.apache.org/jira/browse/CLOUDSTACK-4493?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]

Abhinandan Prateek updated CLOUDSTACK-4493:
-------------------------------------------

    Fix Version/s:     (was: 4.2.1)
                   4.3.0

> registerSSHKeyPair API doc contains wrong API response (private key)
> --------------------------------------------------------------------
>
>                 Key: CLOUDSTACK-4493
>                 URL: https://issues.apache.org/jira/browse/CLOUDSTACK-4493
>             Project: CloudStack
>          Issue Type: Bug
>      Security Level: Public(Anyone can view this level - this is the default.) 
>          Components: Management Server
>            Reporter: Harikrishna Patnala
>            Assignee: Harikrishna Patnala
>            Priority: Critical
>             Fix For: 4.3.0
>
>
> registerSSHKeyPair API returns only name and fingerprint of the ssh keypair (sets null
to private key parameter).
> Our API doc http://cloudstack.apache.org/docs/api/apidocs-4.1/user/registerSSHKeyPair.html
> has an extra parameter private key in response which anyway we return null.
>   Response Name :	  Description
> -------------------------------------------------
>    fingerprint	   :       Fingerprint of the public key
>    name               :       Name of the keypair
>    privatekey        :	   Private key
> This is because we use same response object for all ssh key pair related APIs.
> In this case it is misleading and seems like CS API leaks implementation details.



--
This message was sent by Atlassian JIRA
(v6.1#6144)

Mime
View raw message