Module: MCollective::Security

Defined in:

lib/mcollective/security.rb,
lib/mcollective/security/psk.rb,
lib/mcollective/security/ssl.rb,
lib/mcollective/security/base.rb,
lib/mcollective/security/aes_security.rb

Overview

Security is implimented using a module structure and installations can configure which module they want to use.

Security modules deal with various aspects of authentication and authorization:

• Determines if a filter excludes this host from dealing with a request

• Serialization and Deserialization of messages

• Validation of messages against keys, certificates or whatever the class choose to impliment

• Encoding and Decoding of messages

To impliment a new security class using SSL for example you would inherit from the base class and only impliment:

• decodemsg

• encodereply

• encoderequest

• validrequest?

Each of these methods should increment various stats counters, see the default MCollective::Security::Psk module for examples of this

Filtering can be extended by providing a new validate_filter? method.

Defined Under Namespace

Classes: Aes_security, Base, Psk, Ssl