Fatal编程技术网
  • vmware/
  • Vmware VCenter ReST API身份验证

Vmware VCenter ReST API身份验证

vmware

Vmware VCenter ReST API身份验证,vmware,vcenter,Vmware,Vcenter,我正在https://code.vmware.com/apis/62/vcenter-management#/在使用ReST API时,需要提供哪些标头来向VCenter Server进行身份验证?让我举例说明,为了从VCenter获取虚拟机列表,您需要做些什么 首先,您需要向https://vcsa/rest/com/vmware/cis/session以获取会话id 然后使用GET请求来https://vcsa/rest/vcenter/vm将HTTP头vmware api会话id设置为以前

我正在
https://code.vmware.com/apis/62/vcenter-management#/
在使用ReST API时,需要提供哪些标头来向VCenter Server进行身份验证?

让我举例说明,为了从VCenter获取虚拟机列表,您需要做些什么

首先,您需要向
https://vcsa/rest/com/vmware/cis/session
以获取会话id

然后使用GET请求来
https://vcsa/rest/vcenter/vm
将HTTP头
vmware api会话id
设置为以前获得的会话id

以下是PHP中的一些示例代码:

<?php
$ch = curl_init();

curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, false);
curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, false);
curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);

curl_setopt($ch, CURLOPT_URL, "https://vcsa/rest/com/vmware/cis/session");
curl_setopt($ch, CURLOPT_POST, 1);
curl_setopt($ch, CURLOPT_USERPWD, 'user@vsphere.local' . ":" . 'password');

$out = json_decode(curl_exec($ch));
// var_dump($out);
if ($out === false) {
  echo 'Curl Error: ' . curl_error($ch);
  exit;
}
$sid = $out->value;

curl_setopt($ch, CURLOPT_HTTPHEADER, array("vmware-api-session-id:$sid"));
curl_setopt($ch, CURLOPT_POST, 0);
curl_setopt($ch, CURLOPT_URL, "https://vcsa/rest/vcenter/vm");

$output = curl_exec($ch);
$vms = json_decode($output);
var_dump($vms);

curl_close($ch);
python的


import requests

# https://vdc-download.vmware.com/vmwb-repository/dcr-public/1cd28284-3b72-4885-9e31-d1c6d9e26686/71ef7304-a6c9-43b3-a3cd-868b2c236c81/doc/operations/com/vmware/vcenter/vm.list-operation.html

sess = requests.post("https://XXXXXXXX/rest/com/vmware/cis/session", auth=('USERNAME', 'PASSWORD'), verify=False)
session_id = sess.json()['value']

resp = requests.get("https://XXXXXXXX/rest/vcenter/vm", verify=False, headers={
    "vmware-api-session-id": session_id
})
print(u"resp.text = %s" % str(resp.text))


对于.NET客户端

//仅当您没有有效的证书时忽略证书


var handler = new HttpClientHandler();
        handler.ClientCertificateOptions = ClientCertificateOption.Manual;
        handler.ServerCertificateCustomValidationCallback =
            (httpRequestMessage, cert, cetChain, policyErrors) =>
            {
                return true;
            };


        using (var client = new HttpClient(handler))
        {
            var values = new Dictionary<string, string>
            {

            };

            client.DefaultRequestHeaders.Authorization =
new AuthenticationHeaderValue(
    "Basic", Convert.ToBase64String(
        System.Text.ASCIIEncoding.ASCII.GetBytes(
           $"{"username"}:{"password"}")));
            var content = new FormUrlEncodedContent(values);
            //var stringContent = new StringContent(content, Encoding.UTF8, "application/x-www-form-urlencoded");

            var response = await client.PostAsync("https://vcsa/rest/com/vmware/cis/session", content);

            var responseString = await response.Content.ReadAsAsync<KeyValuePair<string, string>>();
            client.DefaultRequestHeaders.Authorization
                     = new AuthenticationHeaderValue("Bearer", responseString.Value);
            var vmRespone = await client.GetAsync("https://vcsa/rest/vcenter/vm");

        }



var handler=newhttpclienthandler();
handler.ClientCertificateOptions=ClientCertificateOptions.Manual;
handler.ServerCertificateCustomValidationCallback=
(httpRequestMessage、cert、cetChain、policyErrors)=>
{
返回true;
};
使用(var客户端=新的HttpClient(处理程序))
{
var值=新字典
{
};
client.DefaultRequestHeaders.Authorization=
新的AuthenticationHeaderValue(
“基本”,Convert.tobase64字符串(
System.Text.ascienceoding.ASCII.GetBytes(
$“{”用户名“}:{”密码“}”);
var内容=新的FormUrlEncodedContent(值);
//var stringContent=新的stringContent(content,Encoding.UTF8,“application/x-www-form-urlencoded”);
var response=wait client.PostAsync(“https://vcsa/rest/com/vmware/cis/session“,内容);
var responseString=await response.Content.ReadAsAsync();
client.DefaultRequestHeaders.Authorization
=新的AuthenticationHeaderValue(“承载者”,responseString.Value);
var vmRespone=await client.GetAsync(“https://vcsa/rest/vcenter/vm");
}

PowerShell:


$User="<username>"
$Pass="<password>"
$Auth=$User+":"+$Pass
$Encoded=[System.Text.Encoding]::UTF8.GetBytes($Auth)
$EncodedAuth=[System.Convert]::ToBase64String($Encoded)
$Headers = @{"Authorization"="Basic $($EncodedAuth)"}
$SecPass=ConvertTo-SecureString -String $Pass -AsPlainText -Force
$Cred=[System.Management.Automation.PSCredential]::new($User,$SecPass)

<# Uncomment this part if you don't have a valid trusted certificate
$strIDontCarePolicy=@"
using System.Net;
using System.Security.Cryptography.X509Certificates;

public class IDontCarePolicy : ICertificatePolicy {
  public IDontCarePolicy() {}
  public bool CheckValidationResult(ServicePoint sPoint, X509Certificate cert, WebRequest wRequest, int certProb) { return true; }
}
"@
Add-Type -TypeDefinition $strIDontCarePolicy -PassThru
[System.Net.ServicePointManager]::CertificatePolicy = New-Object IDontCarePolicy 
#>

$initSession=Invoke-RestMethod -Uri "https://<vCenter Server>/rest/com/vmware/cis/session" -Method Post -Headers $Headers
$SessionID=$initSession.Value



$User=“”
$Pass=“”
$Auth=$User+“:”+$Pass
$Encoded=[System.Text.Encoding]::UTF8.GetBytes($Auth)
$EncodedAuth=[System.Convert]::ToBase64String($Encoded)
$Headers=@{“Authorization”=“Basic$($EncodedAuth)”}
$SecPass=converttosecurestring-String$Pass-AsPlainText-Force
$Cred=[System.Management.Automation.PSCredential]::新建($User,$SecPass)

会话请求返回Null(来自同一台机器,使用命令行工作中的curl)