[jira] [Resolved] (CLOUDSTACK-4493) registerSSHKeyPair API doc contains wrong API response (private key)

Harikrishna Patnala (JIRA) Mon, 21 Oct 2013 22:21:54 -0700

     [ 
https://issues.apache.org/jira/browse/CLOUDSTACK-4493?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]


Harikrishna Patnala resolved CLOUDSTACK-4493.
---------------------------------------------

    Resolution: Fixed

> registerSSHKeyPair API doc contains wrong API response (private key)
> --------------------------------------------------------------------
>
>                 Key: CLOUDSTACK-4493
>                 URL: https://issues.apache.org/jira/browse/CLOUDSTACK-4493
>             Project: CloudStack
>          Issue Type: Bug
>      Security Level: Public(Anyone can view this level - this is the 
> default.) 
>          Components: Management Server
>            Reporter: Harikrishna Patnala
>            Assignee: Harikrishna Patnala
>            Priority: Critical
>             Fix For: 4.2.1, 4.3.0
>
>
> registerSSHKeyPair API returns only name and fingerprint of the ssh keypair 
> (sets null to private key parameter).
> Our API doc 
> http://cloudstack.apache.org/docs/api/apidocs-4.1/user/registerSSHKeyPair.html
> has an extra parameter private key in response which anyway we return null.
>   Response Name :       Description
> -------------------------------------------------
>    fingerprint           :       Fingerprint of the public key
>    name               :       Name of the keypair
>    privatekey        :           Private key
> This is because we use same response object for all ssh key pair related APIs.
> In this case it is misleading and seems like CS API leaks implementation 
> details.



--
This message was sent by Atlassian JIRA
(v6.1#6144)

[jira] [Resolved] (CLOUDSTACK-4493) registerSSHKeyPair API doc contains wrong API response (private key)

Reply via email to