Update SSH key of a Rundeck project using Rest Service

[swastika basu]

Hi all,

Is it possible to update the ssh key information of a Rundeck project using the Rest api? From the API reference using the GET for /api/1/project/[NAME], i can only see the project name and the resource url but no SSH key information. Is it possible to update the SSH key information of the project using POST call of Rest service? 

[Reigner S. Yrastorza]

Rundeck wish list -

1. GUI interface to -
    - setup/modify API policy
    - setup/modify new groups and users
   
2. A way to delete Job History using the GUI
3. Better documentation on how to use htdigest in realm.properties -

   Current documentation says:

        # This entry is for digest auth.  The credential is a MD5 hash of username:realmname:password
        #digest: MD5:6e120743ad67abfbc385bc2bb754e297

    So, if I have this as my htdigest -

        ryrastorza:Rundeck Access:659f3fdb670ec5d1d2cab6c336aa724d
   
    Doing a md5sum of the htdigest above generates -  419b83895c0c362e1dad0b0ff69852e2

    Is the below syntax the correct format to use htdigest? Though this not seem to work.. 
      
         ryrastorza:MD5:419b83895c0c362e1dad0b0ff69852e2

    (Was using ldap before on older version of rundeck, this is the first time for me to use htdigest for realm.properties)

Thanks,
Reigner S. Yrastorza

[Moses Lei]

Reigner, the way to generate the password hashes is:

echo -n plaintextpassword | md5sum

Then in realm.properties use user:MD5:md5hash,roles

Moses

--

Moses Lei

Principal, Village Chime LLC

mobile: +1 703 901 5969 | skype: moseslei | yahoo: moseslei

--
You received this message because you are subscribed to the Google Groups "rundeck-discuss" group.
To unsubscribe from this group and stop receiving emails from it, send an email to rundeck-discu...@googlegroups.com.
For more options, visit https://groups.google.com/groups/opt_out.
 
 

[Reigner S. Yrastorza]

Thanks Moses, have no problems in using md5 hash.
I am interested on using apache htdigest "http://httpd.apache.org/docs/2.2/programs/htdigest.html", where it uses realm username.


Which the documentation says it is possible?

        # This entry is for digest auth.  The credential is a MD5 hash of username:realmname:password
        #digest: MD5:6e120743ad67abfbc385bc2bb754e297

[Moses Lei]

That comment about digest authentication is from the jetty realm.properties template (our authentication implementation from Jetty), but it requires support from the application. As of now IIRC RunDeck does not actually implement digest auth, so I don't think there is a way to use it with realm.properties. Greg could correct me if I'm wrong on this.

Is there a specific problem you're trying to solve with digest auth?

Moses

--

Moses Lei

Principal, Village Chime LLC

mobile: +1 703 901 5969 | skype: moseslei | yahoo: moseslei

[Reigner S. Yrastorza]

Our rundeck login page needs to be publicly accessible, for security measures I added a htdigest auth on top of the rundeck login page. 

Instead of asking users for md5 and htdigest password, would just rather use one auth mechanism which is htdigest.

This is temporary until we finish building our ldap server.


Thanks,
Reigner S. Yrastorza

[swastika basu]

Got a solution to the problem we were facing. Rundeck allows Node to be connected using the key which is to be supplied through the node definition. We can always update the key information in the node definition. Thanks for such an awesome architecture which gives the user so much flexiblities !!!!