Max life time API Token

[Race667]

Is it possible to set/define (a policy) the max lifetime of API Tokens, i.e. for security reasons a user should only be able to create a API token with max life time of 365days.

 

[apoyen]

Hello,

I think that for the moment it's not possible to do this in Proxmox during the creation of the token.

You can check the lifetime of your token in the /etc/pve/user.cfg or via the API and make a script executed with a cron that can remove the token if his lifetime is too high.

Or you can create a script using the Proxmox api to generate your Api token that can respect your lifetime policy.

 

[Race667]

Ok, thank you!