Pure volume drivers don't verify https requests
Bug #1546655 reported by
Patrick East
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
Cinder |
Fix Released
|
Undecided
|
Patrick East |
Bug Description
As-is the Pure volume drivers do not have any way to verify https requests being sent to the FlashArray for management API calls. This means that a deployer has no way to secure that connection and know it is actually utilizing trusted https requests.
Newer versions of the purestorage python module support for specifying to verify the requests and an optional ssl cert path. This could be utilized to solve this.
Changed in cinder: | |
assignee: | nobody → Patrick East (patrick-east) |
To post a comment you must log in.
Fix proposed to branch: master /review. openstack. org/281625
Review: https:/