[Kimchi-devel] [PATCH v2 4/4] Limit user access to REST API /host.

Thursday, 13 February 2014

From: Leonardo Garcia <lagarcia(a)br.ibm.com&gt;

There is a need to restrict access to the REST API /host on POST, PUT,
and DELETE HTTP methods to user with admin rights. In the context of the
authorization feature developed, that means the user needs to have sudo
rights to run any commands on the system in order to be able to access
the /host REST API using POST, PUT, and DELETE HTTP methods.

Signed-off-by: Leonardo Garcia <lagarcia(a)br.ibm.com&gt;
---
 src/kimchi/control/host.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/kimchi/control/host.py b/src/kimchi/control/host.py
index 053c822..624e0d2 100644
--- a/src/kimchi/control/host.py
+++ b/src/kimchi/control/host.py
@@ -27,7 +27,7 @@ from kimchi.control.base import Collection, Resource
 from kimchi.control.utils import UrlSubNode
 
 
-@UrlSubNode("host", True)
+@UrlSubNode("host", True, ['POST', 'PUT', 'DELETE'])
 class Host(Resource):
     def __init__(self, model, id=None):
         super(Host, self).__init__(model, id)
-- 
1.8.5.3


    

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

[Kimchi-devel] [PATCH v2 4/4] Limit user access to REST API /host.