KVM: put password in URL itself.

This is still secure because we use HTTPS, then url is encrypted as well.

KVM: put password in URL itself.
This is still secure because we use HTTPS, then url is encrypted as well.
9c1519b8 · Cédric de Saint Martin · f27ca04f · 9c1519b8 · 9c1519b8
Commit 9c1519b8 authored Jun 20, 2013 by Cédric de Saint Martin
Hide whitespace changes
Inline Side-by-side

Showing with 3 additions and 4 deletions

software/kvm/common.cfg software/kvm/common.cfg +1 -1

software/kvm/instance-kvm.cfg.in software/kvm/instance-kvm.cfg.in +2 -3

No files found.
--- a/software/kvm/common.cfg
+++ b/software/kvm/common.cfg
@@ -71,7 +71,7 @@ command =
 [template-kvm]
 recipe = slapos.recipe.template
 url = ${:_profile_base_location_}/instance-kvm.cfg.in
-md5sum = cb8adfb70882a07e1df3943983c27963
+md5sum = 5f88443a60c93e1f35555b35abb56662
 output = ${buildout:directory}/template-kvm.cfg
 mode = 0644

--- a/software/kvm/instance-kvm.cfg.in
+++ b/software/kvm/instance-kvm.cfg.in
@@ -187,9 +187,8 @@ sla-instance_guid = $${slap-parameter:frontend-instance-guid}
 [publish-kvm-connection-information]
 recipe = slapos.cookbook:publish
-backend-url = https://[$${novnc-instance:ip}]:$${novnc-instance:port}/vnc_auto.html?host=[$${novnc-instance:ip}]&port=$${novnc-instance:port}&encrypt=1
+backend-url = https://[$${novnc-instance:ip}]:$${novnc-instance:port}/vnc_auto.html?host=[$${novnc-instance:ip}]&port=$${novnc-instance:port}&encrypt=1&password=$${kvm-instance:passwd}
-password = $${kvm-instance:passwd}
+url = $${request-slave-frontend:connection-url}/vnc_auto.html?host=$${request-slave-frontend:connection-domainname}&port=$${request-slave-frontend:connection-port}&encrypt=1&path=$${request-slave-frontend:connection-resource}&password=$${kvm-instance:passwd}
-url = $${request-slave-frontend:connection-url}/vnc_auto.html?host=$${request-slave-frontend:connection-domainname}&port=$${request-slave-frontend:connection-port}&encrypt=1&path=$${request-slave-frontend:connection-resource}
 [frontend-promise]