Difference between revisions of "Master Portal sshkey endpoint"
From PDP/Grid Wiki
Jump to navigationJump to searchLine 3: | Line 3: | ||
The MasterPortal server has an extra OIDC-protected end-point, ''/sshkey'', which provides an API for storing SSH public keys on the MasterPortal. These SSH public keys can be used to obtain proxy certificates from the MasterPortal, provided a long-lived proxy certificate is present. This wiki page describes the available Master Portal API for managing the SSH keys. | The MasterPortal server has an extra OIDC-protected end-point, ''/sshkey'', which provides an API for storing SSH public keys on the MasterPortal. These SSH public keys can be used to obtain proxy certificates from the MasterPortal, provided a long-lived proxy certificate is present. This wiki page describes the available Master Portal API for managing the SSH keys. | ||
− | See also [[RCauth.eu_and_MasterPortal_VOPortal_integration_guide | Instructions for VO Portal developers]] for information on how to register a client. '''Note:''' the endpoint can be configured to require a specific OAuth2 scope, which then will need to be enabled for the client. | + | See also [[RCauth.eu_and_MasterPortal_VOPortal_integration_guide | Instructions for VO Portal developers]] for information on how to register a client.<br> |
+ | '''Note:''' the endpoint can be [[Master_Portal_Administrator_Guide#Configuration | configured]] to require a specific OAuth2 scope, which then will need to be enabled for the client. | ||
Additionally the MasterPortal also has a (non OIDC-protected) end-point ''/sshkeylisting'' for retrieving a flat list of ''username'' / ''publickey'' pairs. This latter endpoint is typically only accessible from certain hosts and intended for use by the �SSH host� to build up its '''AuthorizedKeysCommand'''. | Additionally the MasterPortal also has a (non OIDC-protected) end-point ''/sshkeylisting'' for retrieving a flat list of ''username'' / ''publickey'' pairs. This latter endpoint is typically only accessible from certain hosts and intended for use by the �SSH host� to build up its '''AuthorizedKeysCommand'''. |