On 5/7/21 11:24 AM, Daniel P. Berrangé wrote: > We want a way to distinguish between calls from a libvirt daemon, and a > regular client application when both are running as the same user > account. This is not possible with the current set of attributes > recorded against an identity, as there is nothing that is common to all > of the modular libvirt daemons, while distinct to all other processes. > > We thus introduce the idea of a system token, which is simply a random > hex string that is only known by the libvirt daemons, to be recored
recorded > against the system identity. > > Reviewed-by: Michal Privoznik <mpriv...@redhat.com> > Signed-off-by: Daniel P. Berrangé <berra...@redhat.com> > --- -- Eric Blake, Principal Software Engineer Red Hat, Inc. +1-919-301-3226 Virtualization: qemu.org | libvirt.org
