[Ovirt-devel] Re: virt-viewer plugin integration issues
Daniel P. Berrange
berrange at redhat.com
Fri Aug 22 08:26:25 UTC 2008
On Fri, Aug 22, 2008 at 08:57:26AM +0100, Richard W.M. Jones wrote:
> On Thu, Aug 21, 2008 at 11:43:45PM -0400, Perry N. Myers wrote:
> > Either of you have any suggestions on where we should go with this.
> > Short term we need a solution (even if it is slightly hackish) just to
> > make the console work. Longer term we need something more secure.
>
> virt-viewer in this case is still running from the browser plugin, or
> are we expecting users to launch virt-viewer themselves?
>
> If we control the launching of virt-viewer (eg. through the browser
> plugin) then can we obtain a one-time password or key from the QEMU
> server on the managed node? If we can obtain one, then we can easily
> pass it through to virt-viewer via an HTML <embed> parameter which
> gets passed to the virt-viewer command line.
The one time key idea doesn't easily work because it doesn't enable use of
encryption - it only provides authentication - unless we find a SASL plugin
that lets us do this.
Daniel
--
|: Red Hat, Engineering, London -o- http://people.redhat.com/berrange/ :|
|: http://libvirt.org -o- http://virt-manager.org -o- http://ovirt.org :|
|: http://autobuild.org -o- http://search.cpan.org/~danberr/ :|
|: GnuPG: 7D3B9505 -o- F3C9 553F A1DA 4AC2 5648 23C1 B3DF F742 7D3B 9505 :|
More information about the ovirt-devel
mailing list