With ipsilon-client-install, it is currently possible to register the SP in the Ipsilon server if you have the admin password. There might be cases where we want to automate installation of a SP, but we don't want to embed the admin password in the automation scripts. We should invistigate using a one-time password approach, similar to what FreeIPA supports for IPA client installation. The flow would be:
Admin user pre-creates an SP in Ipsilon without metadata and sets/generates a random one-time password.
SP installation is performed using ipsilon-client-install, specifying the SP name and matching one-time password.
milestone: => Backlog
Metadata Update from @nkinder:
- Issue set to the milestone: Backlog
to comment on this ticket.