[jira] [Commented] (CLOUDSTACK-9099) SecretKey is returned from the APIs

ASF GitHub Bot (JIRA) Thu, 31 Dec 2015 06:10:22 -0800

    [ 
https://issues.apache.org/jira/browse/CLOUDSTACK-9099?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15075956#comment-15075956
 ]


ASF GitHub Bot commented on CLOUDSTACK-9099:
--------------------------------------------

Github user DaanHoogland commented on the pull request:

    https://github.com/apache/cloudstack/pull/1152#issuecomment-168200764
  
    @kansal when you say 'I have deprecated that as many regressions were using 
the secret key from those APIs for authentication', I think we should adjust 
those regression test to set the setting to true. Let's not do consessions to 
security for the sake of testing.


> SecretKey is returned from the APIs
> -----------------------------------
>
>                 Key: CLOUDSTACK-9099
>                 URL: https://issues.apache.org/jira/browse/CLOUDSTACK-9099
>             Project: CloudStack
>          Issue Type: Bug
>      Security Level: Public(Anyone can view this level - this is the 
> default.) 
>            Reporter: Kshitij Kansal
>            Assignee: Kshitij Kansal
>
> The sercreKey parameter is returned from the following APIs:
> createAccount
> createUser
> disableAccount
> disableUser
> enableAccount
> enableUser
> listAccounts
> listUsers
> lockAccount
> lockUser
> registerUserKeys
> updateAccount
> updateUser



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)

[jira] [Commented] (CLOUDSTACK-9099) SecretKey is returned from the APIs

Reply via email to