Nova get-password

[Dolimont]

Hello,

In our openstack project, password are encrypted. In order to use instances, we need to decrypt password using nova get-password command with our private key. Instead of giving hardcoded SSH credentials, would it be possible to give our private key in order to retrieve the password ?

Christophe

[olivergondza]

How would the use-case look like? I have used the feature before but does not recollect any decrypting...

[Dolimont]

Well, I've just give a try at your plugin tonight. If i'm right, once the deployment is done, a new slave is created.

In order to be able to establish the Jnlp link automatically, I'll need the decrypted password in order to log on the new instance. It's what i'm doing manually.

I'll continue my investigation next Monday. I was hoping to deploy the slave, then in the same job running some command.

[olivergondza]

Oh, here it is: https://developer.openstack.org/api-ref/compute/?expanded=show-server-password-detail#show-server-password. I used it through nova get-password and did not realized there is decrypting on the client side going on...

This would require additional control to be added to the config page since you still net do configure ssh key and instruct plugin not to use it to login but to acquire the password instead.