Re: [libvirt] Proposed libguestfs API for implementing libvirt virConnectOpenAuth
On Sun, Oct 14, 2012 at 07:44:44PM -0400, Cole Robinson wrote:
On 10/13/2012 05:31 AM, Richard W.M. Jones wrote:
>
> Does libvirt (or policy kit?) provide any mechanism for caching these
> credentials within the same process, so that we don't have to provide
> the same creds back to libvirt for multiple connections?
>
Yeah, that's the 'keep' in 'auth_admin_keep' in libvirt's
policykit rules:
http://libvirt.org/git/?p=libvirt.git;a=blob;f=daemon/libvirtd.policy.in
But libvirt only enables it for local, active sessions, which doesn't include
SSH logins for example. libvirt should s/auth_admin/auth_admin_keep/g
So if I understand correctly, how about this patch?
Rich.
--
Richard Jones, Virtualization Group, Red Hat http://people.redhat.com/~rjones
virt-top is 'top' for virtual machines. Tiny program with many
powerful monitoring features, net stats, disk stats, logging, etc.
http://et.redhat.com/~rjones/virt-top
Attachments:
- 0001-daemon-Make-the-default-PolicyKit-policy-auth_admin_.patch (text/plain — 964 bytes)