Hi, On Wed, Apr 10, 2019 at 08:48:38AM +0100, Nick Hilliard via db-wg wrote: > Tore Anderson wrote on 10/04/2019 06:19: > > Indeed. When stage 1 of NWI-8 is implemented, I was planning to propose > > an NWI to allow for creating API keys for database maintenance at > > https://lirportal.ripe.net/api/ (i.e., for use with Syncupdates and > > the RESTful API). > > you mean a single-factor read/write authentication token, typically > stored in a database in unencrypted format? :-)
syncupdates needs some sort of credential. Either you put your LIR access
(or mntner md5 password) into the script - which is arguably a bad idea -
or you have API tokens that are restricted to *only* API, not "API and all
else".
You could, certainly, argue that nobody should do RIPE DB updates in an
automated way...
Gert Doering
-- NetMaster
--
have you enabled IPv6 on something today...?
SpaceNet AG Vorstand: Sebastian v. Bomhard, Michael Emmer
Joseph-Dollinger-Bogen 14 Aufsichtsratsvors.: A. Grundner-Culemann
D-80807 Muenchen HRB: 136055 (AG Muenchen)
Tel: +49 (0)89/32356-444 USt-IdNr.: DE813185279
signature.asc
Description: PGP signature
