When I use the API (nodes/$node/qemu/$vmid/vncproxy) to make a console connection, I receive a ticket back.
I assume I need to use that as VNC password?
Can this token only be used to access the console of that particular VM, or can it be (ab)used for other management actions as well?
Just wondering if I can safely pass the ticket to end-users that are only supposed to have access to the console of exactly one VM, and should not be allowed to do anything else.
I assume I need to use that as VNC password?
Can this token only be used to access the console of that particular VM, or can it be (ab)used for other management actions as well?
Just wondering if I can safely pass the ticket to end-users that are only supposed to have access to the console of exactly one VM, and should not be allowed to do anything else.
Last edited: