oauth style API keys for clients to be able to read/write to the cluster.
client (or cluster) generates a random CASK_ACCESS_KEY. Admin interface then generates a secret by taking that key, a capability (Read, Write, or RW), and signing it with the cluster secret.
client operations then always include the access key and access secret, so Cask can grant or deny requests.
oauth style API keys for clients to be able to read/write to the cluster.
client (or cluster) generates a random
CASK_ACCESS_KEY. Admin interface then generates a secret by taking that key, a capability (Read, Write, or RW), and signing it with the cluster secret.client operations then always include the access key and access secret, so Cask can grant or deny requests.