chef - Admin permissions on chef-server:4000

Subscribers: 1946
Owners
Bryan McLellan
Joshua Timberman
Nathen Harvey
Seth Chisamore
Serdar Sutay

Subscribe
Unsubscribe
Info
Archive

Post

RSS
Shared documents

General discussion about Chef

Admin permissions on chef-server:4000

From: Michal Frackowiak <michalf@wikidot.com>
To: chef@lists.opscode.com
Subject: Admin permissions on chef-server:4000
Date: Mon, 16 Mar 2009 09:27:59 +0100

Hi,

we have a successfully experimenting with chef-server + clients setup, but still cannot figure out the permission settings.

The problem is that when you go to you http://chef-server.example.com:4000 within the browser and log in using OpenID (using any external identity provider), you _always_ get admin permissions.

We are running chef on a EC2 + external chef-server (+ monitoring etc) hybrid network, without any VPN, and wanted to run chef-server on a public interface.

From what I can see we could restrict access to the chef-server, either by setting up a VPN network, or by limiting access in any other way. But perhaps there is a better way? Is it documented?

Thanks,
Michal

---------------
Michal Frackowiak
http://michalfrackowiak.com

Admin permissions on chef-server:4000, Michal Frackowiak, 03/16/2009
- Re: Admin permissions on chef-server:4000, AJ Christensen, 03/16/2009
  - Re: Admin permissions on chef-server:4000, Aric Gardner, 03/16/2009
    - Re: Admin permissions on chef-server:4000, Michal Frackowiak, 03/17/2009
      - Re: Admin permissions on chef-server:4000, Adam Jacob, 03/17/2009
      - Re: Admin permissions on chef-server:4000, Adam Jacob, 03/17/2009