Hi, On Wed, Apr 10, 2019 at 08:48:38AM +0100, Nick Hilliard via db-wg wrote:
Tore Anderson wrote on 10/04/2019 06:19:
Indeed. When stage 1 of NWI-8 is implemented, I was planning to propose an NWI to allow for creating API keys for database maintenance at https://lirportal.ripe.net/api/ (i.e., for use with Syncupdates and the RESTful API).
you mean a single-factor read/write authentication token, typically stored in a database in unencrypted format? :-)
syncupdates needs some sort of credential. Either you put your LIR access (or mntner md5 password) into the script - which is arguably a bad idea - or you have API tokens that are restricted to *only* API, not "API and all else". You could, certainly, argue that nobody should do RIPE DB updates in an automated way... Gert Doering -- NetMaster -- have you enabled IPv6 on something today...? SpaceNet AG Vorstand: Sebastian v. Bomhard, Michael Emmer Joseph-Dollinger-Bogen 14 Aufsichtsratsvors.: A. Grundner-Culemann D-80807 Muenchen HRB: 136055 (AG Muenchen) Tel: +49 (0)89/32356-444 USt-IdNr.: DE813185279