chef - [chef] Limiting a client to data bag access with OpenSource Chef-Server

Subscribers: 1946
Owners
Bryan McLellan
Joshua Timberman
Nathen Harvey
Seth Chisamore
Serdar Sutay

Subscribe
Unsubscribe
Info
Archive

Post

RSS
Shared documents

General discussion about Chef

[chef] Limiting a client to data bag access with OpenSource Chef-Server

From: Steffen Gebert < >
To:
Subject: [chef] Limiting a client to data bag access with OpenSource Chef-Server
Date: Mon, 22 Apr 2013 08:34:56 +0200

Hi,

is there a way to limit an API client to access the databags/ REST
endpoint only? Using OpenSource Chef-Server.. (I'm pretty sure the API
of closed Chef allows this).

My only idea would be to deny access to databags/ in the nginx proxy for
the IP running that client (a self-provision web frontend).

Any other ideas (doing it on a per-client basis)?

Thanks
Steffen

[chef] Limiting a client to data bag access with OpenSource Chef-Server, Steffen Gebert, 04/21/2013
- [chef] Re: Limiting a client to data bag access with OpenSource Chef-Server, Noah Kantrowitz, 04/22/2013