]> xenbits.xensource.com Git - libvirt.git/commit
projects / libvirt.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 1ca3959) | patch
util: introduce concept of a system token into identities
authorDaniel P. Berrangé <berrange@redhat.com>
Thu, 19 Nov 2020 12:26:17 +0000 (12:26 +0000)
committerDaniel P. Berrangé <berrange@redhat.com>
Thu, 13 May 2021 10:07:15 +0000 (11:07 +0100)
commitd5d011f76745a9764464c9066223b17c4058f83f
tree3cd8846a08b1abc5b0c8b46461856fedf9e5f9a4tree
parent1ca3959712c91db686b8e38dd21c22aa1bbfad32commit | diff
util: introduce concept of a system token into identities

We want a way to distinguish between calls from a libvirt daemon, and a
regular client application when both are running as the same user
account. This is not possible with the current set of attributes
recorded against an identity, as there is nothing that is common to all
of the modular libvirt daemons, while distinct to all other processes.

We thus introduce the idea of a system token, which is simply a random
hex string that is only known by the libvirt daemons, to be recorded
against the system identity.

Reviewed-by: Michal Privoznik <mprivozn@redhat.com>
Signed-off-by: Daniel P. Berrangé <berrange@redhat.com>
src/libvirt_private.syms diff | blob | blame | history
src/util/viridentity.c diff | blob | blame | history
src/util/viridentity.h diff | blob | blame | history
Unnamed repository; edit this file 'description' to name the repository.