Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[RFE] Replace BasicAuth with Session-based authentication (JWT) #244

Closed
grafuls opened this issue Apr 2, 2022 · 0 comments
Closed

[RFE] Replace BasicAuth with Session-based authentication (JWT) #244

grafuls opened this issue Apr 2, 2022 · 0 comments
Labels
enhancement New feature or request

Comments

@grafuls
Copy link
Collaborator

grafuls commented Apr 2, 2022

Is your feature request related to a problem? Please describe.
Token based authentication is going to reduce the number of times we must send credential to the server. Servers that use tokens can improve their performances, because they do not need to continuously look through all the session details to authorize the user’s requests.

What System / IPMI Platform?
ALL

Describe the Possible Solution
Create an X auth session via POST with payload {"UserName":$U,"Password":$P} to /redfish/v1/SessionService/. Retrieve the token from the response and store in memory then pass it on every subsequent request through the header like {'X-Auth-Token': $TOKEN}.
Close the session via DELETE to /redfish/v1/SessionService/Sessions/$SESSION_ID.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
enhancement New feature or request
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@grafuls