authz: add QAuthZSimple object type for easy whitelist auth checks - bwlp/qemu.git - Experimental fork of QEMU with video encoding patches

diff options

author	Daniel P. Berrangé	2018-05-02 16:40:33 +0200
committer	Daniel P. Berrangé	2019-02-26 16:25:58 +0100
commit	fb5c4ebc0872e5f41634aec2f5a2cb5d83aefcd0 (patch)
tree	f5d26fc069216b70f6e756ce317ab1e4e2219e54 /MAINTAINERS
parent	authz: add QAuthZ object as an authorization base class (diff)
download	qemu-fb5c4ebc0872e5f41634aec2f5a2cb5d83aefcd0.tar.gz qemu-fb5c4ebc0872e5f41634aec2f5a2cb5d83aefcd0.tar.xz qemu-fb5c4ebc0872e5f41634aec2f5a2cb5d83aefcd0.zip

authz: add QAuthZSimple object type for easy whitelist auth checks

In many cases a single VM will just need to whitelist a single identity as the allowed user of network services. This is especially the case for TLS live migration (optionally with NBD storage) where we just need to whitelist the x509 certificate distinguished name of the source QEMU host. Via QMP this can be configured with: { "execute": "object-add", "arguments": { "qom-type": "authz-simple", "id": "authz0", "props": { "identity": "fred" } } } Or via the command line -object authz-simple,id=authz0,identity=fred Reviewed-by: Marc-André Lureau <marcandre.lureau@redhat.com> Reviewed-by: Philippe Mathieu-Daudé <philmd@redhat.com> Tested-by: Philippe Mathieu-Daudé <philmd@redhat.com> Signed-off-by: Daniel P. Berrange <berrange@redhat.com>

Diffstat (limited to 'MAINTAINERS')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: