chef - [chef] Restriction on REST API access

Subscribers: 1946
Owners
Bryan McLellan
Joshua Timberman
Nathen Harvey
Seth Chisamore
Serdar Sutay

Subscribe
Unsubscribe
Info
Archive

Post

RSS
Shared documents

General discussion about Chef

[chef] Restriction on REST API access

From: < >
To:
Subject: [chef] Restriction on REST API access
Date: Thu, 26 Apr 2012 02:42:52 -0700 (PDT)

Hello,

In Puppet, there is a auth.conf file which permits to define some
authorization
thanks to regex on path of the REST API

For example, by default in Puppet, there is:

# allow nodes to retrieve their own catalog (ie their configuration)
path ~ ^/catalog/([^/]+)$
method find
allow $1

which permits to dynamically setup the authorization on the request.
For exemple, the request
/catalogue/clienthostname
will only work if it is the client 'clienthostname' which request it,
otherwise
it will fail with an authorization error.

Is there a similar feature in opensource Chef on the Chef REST API please ?

Thanks in advance for your answers.

Best regards,
Christophe

[chef] Restriction on REST API access, cl.subscription, 04/26/2012
- [chef] Re: Restriction on REST API access, Peter Donald, 04/26/2012
- [chef] Re: Restriction on REST API access, Adam Jacob, 04/26/2012