[
https://issues.apache.org/jira/browse/CLOUDSTACK-4493?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Harikrishna Patnala updated CLOUDSTACK-4493:
--------------------------------------------
Status: Ready To Review (was: In Progress)
> registerSSHKeyPair API doc contains wrong API response (private key)
> --------------------------------------------------------------------
>
> Key: CLOUDSTACK-4493
> URL: https://issues.apache.org/jira/browse/CLOUDSTACK-4493
> Project: CloudStack
> Issue Type: Bug
> Security Level: Public(Anyone can view this level - this is the
> default.)
> Components: Management Server
> Reporter: Harikrishna Patnala
> Assignee: Harikrishna Patnala
> Priority: Critical
> Fix For: 4.3.0
>
>
> registerSSHKeyPair API returns only name and fingerprint of the ssh keypair
> (sets null to private key parameter).
> Our API doc
> http://cloudstack.apache.org/docs/api/apidocs-4.1/user/registerSSHKeyPair.html
> has an extra parameter private key in response which anyway we return null.
> Response Name : Description
> -------------------------------------------------
> fingerprint : Fingerprint of the public key
> name : Name of the keypair
> privatekey : Private key
> This is because we use same response object for all ssh key pair related APIs.
> In this case it is misleading and seems like CS API leaks implementation
> details.
--
This message was sent by Atlassian JIRA
(v6.1#6144)
