Brèves de comptoir - [API-KEYS] Limit access of application keys with rules
BMPCreated with Sketch.BMPZIPCreated with Sketch.ZIPXLSCreated with Sketch.XLSTXTCreated with Sketch.TXTPPTCreated with Sketch.PPTPNGCreated with Sketch.PNGPDFCreated with Sketch.PDFJPGCreated with Sketch.JPGGIFCreated with Sketch.GIFDOCCreated with Sketch.DOC Error Created with Sketch.
Frage

[API-KEYS] Limit access of application keys with rules

J
Von
JCG2
Erstellungsdatum 2020-04-16 14:49:21 (edited on 2024-09-04 12:17:06) in Brèves de comptoir

Hi everybody,

I was looking for all application keys I have created many on ovh and now try to limit the rights of each application key to it job.
I wonder whether you have some best practise to limit the accessRules of an application key when I generate the consummer key like that:

curl -XPOST -H “X-Ovh-Application: ” -H “Content-type: application/json” https://eu.api.ovh.com/1.0/auth/credential -d ‘{
“accessRules”:[
{“method”:”POST”,”path”:”/domain/zone//record”},
{“method”:”POST”,”path”:”/domain/zone//refresh”},
{“method”:”DELETE”,”path”:”/domain/zone//record/*”}
],
“redirection”: “https://www."
}’

First example, I have one dns zone with multi domain and I would rather limit the POST on each domain with a specific application key. Could I limit the access Rules to do this ?

Second example, I'm using terraform with OVH and have an application key with all access on /
I didn't find which api routes terraform needed to create new instance of server and I'am afraid of block terraform if I limit too much its rights. Do you have any topic on this too ?

Thanks you

JCG
Positive Bewertungen (0)
1804 Ansichten
Antworten sind derzeit für diese Frage deaktiviert.

An Diskussion teilnehmen