Difference between revisions of "Master Portal sshkey endpoint"

From PDP/Grid Wiki
Jump to navigationJump to search
Line 3: Line 3:
 
The MasterPortal server has an extra OIDC-protected end-point, ''/sshkey'', which provides an API for storing SSH public keys on the MasterPortal. These SSH public keys can be used to obtain proxy certificates from the MasterPortal, provided a long-lived proxy certificate is present. This wiki page describes the available Master Portal API for managing the SSH keys.
 
The MasterPortal server has an extra OIDC-protected end-point, ''/sshkey'', which provides an API for storing SSH public keys on the MasterPortal. These SSH public keys can be used to obtain proxy certificates from the MasterPortal, provided a long-lived proxy certificate is present. This wiki page describes the available Master Portal API for managing the SSH keys.
  
See also [[RCauth.eu_and_MasterPortal_VOPortal_integration_guide | Instructions for VO Portal developers]] for information on how to register a client. '''Note:''' the endpoint can be configured to require a specific OAuth2 scope, which then will need to be enabled for the client.
+
See also [[RCauth.eu_and_MasterPortal_VOPortal_integration_guide | Instructions for VO Portal developers]] for information on how to register a client.<br>
 +
'''Note:''' the endpoint can be [[Master_Portal_Administrator_Guide#Configuration | configured]] to require a specific OAuth2 scope, which then will need to be enabled for the client.
  
 
Additionally the MasterPortal also has a (non OIDC-protected) end-point ''/sshkeylisting'' for retrieving a flat list of ''username'' / ''publickey'' pairs. This latter endpoint is typically only accessible from certain hosts and intended for use by the �SSH host� to build up its '''AuthorizedKeysCommand'''.
 
Additionally the MasterPortal also has a (non OIDC-protected) end-point ''/sshkeylisting'' for retrieving a flat list of ''username'' / ''publickey'' pairs. This latter endpoint is typically only accessible from certain hosts and intended for use by the �SSH host� to build up its '''AuthorizedKeysCommand'''.

Revision as of 12:48, 5 September 2019