In order to enable us to use the api for Go we need to add an api user, which I am trying to do using the passwordFile tag in the cruise-config.xml file (adding one to the ldap is not practical). Adding the user does not seem to work though, or the password file is not read properly.
I am adding a user called "apiuser" with password "apipwd", and the password file looks like this:
apiuser=270bbd32529f246be4a1e10960fa8facdff20872
the thing after the equals sign being the sha1 encoded password. The security section of the config xml file looks like this:
<security>
<ldap (....) />
<passwordFile path="/path/to/go/users.properties" />
</security>(changed and truncated for privacy). So we are both using the ldap (which works fine) and the passwordFile (which doesn't).
We are using Go version 2.2.0(13083-b0ad4e4db6ef).
Any clues as to what is wrong?
Adding api user in passwordFile
Comments
2 comments
Hi Casper
The syntax of the user name and password in our password file is:
Ian:{SHA}A7qwaAdhN2p1tqX0httP8rrsB60=
This seems to be recognised OK. (one thing that gets me every time i add a new user is that they don't show up in User Summary until you log in as that user, I somehow think it would read the file and display that.)
I use http://www.askapache.com/online-tools/htpasswd-generator/ to provide the SHA encryption, which I then just cut and paste into the password file.
Ian
Hi Ian,
Thanks for the reply. It seems to work, though i am being tripped up by our user limit when trying to log in, guess we'll have to remove a user or upgrade.
/Casper
Please sign in to leave a comment.