Skip to content
New issue

Have a question about this project? # for a free GitHub account to open an issue and contact its maintainers and the community.

#

By clicking “#”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? # to your account

Jump to bottom

Update user keys in running VMs #60

Open
andybavier opened this issue Mar 4, 2015 · 2 comments
Open

Update user keys in running VMs #60

andybavier opened this issue Mar 4, 2015 · 2 comments
Assignees
@gwsapan

Comments

@andybavier
Copy link
Member

As new users are added to / removed from slices, it would be nice if the change is reflected in the authorized_keys file inside the VM as well as the user account used for proxy login. This functionality is outside of the scope of OpenStack's key injection feature, which is only triggered on VM creation.
@gwsapan gwsapan self-assigned this Apr 16, 2015
@gwsapan
Copy link

gwsapan commented May 20, 2015

Is this feature request still relevant?

@andybavier
Copy link
Member Author

It's still on our wish list but perhaps it's low priority.

Anyhow, one part of the problem has been solved: dynamically updating the keys for the external user account. Scott added an XOS API call to extract the keys for an instance. On the compute nodes a cron job runs this script to pull the keys from XOS and save them in the right place:

https://github.com/andybavier/opencloud-nova-compute-ansible/blob/onlab/files/usr/local/sbin/download-keys.py

So the missing piece is adding similar functionality inside the VM. Maybe a simple daemon that pulls keys using the XOS API could be injected using cloud-init.

# for free to join this conversation on GitHub. Already have an account? # to comment
Assignees

@gwsapan gwsapan

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@andybavier @gwsapan