on 03-11-2019 11:12 AM
Hello Experts,
I'm trying to use the credential store service on SCP CF application.
I bound the service according to:
Bind a Service Instance
But for encrypting a password & public key are needed:
Encrypting Payloads
According to the docs it should be provided in VCAP_SERVICES but all I see in VCAP_SERVICES is:
{
"oauth_token_url":
"https://securestoreauth.cfapps.sap.hana.ondemand.com/api/v1/token",
"private_key": "...",
"parameters": {
"authorization": {
"default_permissions": [
"list",
"write",
"read"
],
"namespace_permissions": {
"<namespace>": [
"list",
"write",
"read"
]
}
}
},
"url": "https://securestore.cfapps.sap.hana.ondemand.com/api/v1/credentials",
"username": "1234567a-1234-1a1a-9876-123456789abc"
}
I couldn't get those values.
Do I need to provide extra parameters when binding the service to my app?
Regards,
Omri
After some digging on internal forums, here is what someone posted :
----
By default OAuth authentication is used for "small", "meduim" and "large" service plans. You can use BASIC authentication only with "standard" (by default) and "small" (configure explicitly) service plans.
The default authentication mechanism for "small" service plan is "oauth:key". If you want to use "basic" instead you have to specify this when the service instance is created or updated, for example:cf create-service credstore small credstore-small -c "{\"authentication\":{\"type\":\"basic\"}}"
----
I do confirm that I previously played with "small" sizes only, and that creating a "standard" credstore allowed me now to see the password field :
{
"password": "...",
"encryption": {
"client_private_key": "...",
"server_public_key": "..."
},
"parameters": {
"authorization": {
"default_permissions": [
"create",
"delete",
"info",
"list",
"namespaces",
"read",
"update"
],
"namespace_permissions": {
"<namespace>": [
"create",
"delete",
"list",
"read",
"update"
]
}
}
},
"url": "https://credstore.cfapps.eu10.hana.ondemand.com/api/v1/credentials",
"username": "deadbeef-1111-2222-3333-4444deadbeef"
Don't ask me why we have such limitations 🙂
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
User | Count |
---|---|
80 | |
24 | |
11 | |
9 | |
7 | |
6 | |
5 | |
5 | |
4 | |
4 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.