vault: Information for authentication appear in debug logs
Bug #2058397 reported by
Takashi Kajinami
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
Barbican |
Fix Released
|
Undecided
|
Takashi Kajinami | ||
castellan |
Fix Released
|
Undecided
|
Takashi Kajinami |
Bug Description
The following options of vault key manager are used for authentication with Vault.
root_token_id: This is not actually an id but a token string
approle_role_id and approle_secret_id: approle_role_id and approle_secret_id
However these options currently lack secret=True and appear in debug logs (during start up, when all options are dumped)
Changed in castellan: | |
assignee: | nobody → Takashi Kajinami (kajinamit) |
Changed in barbican: | |
assignee: | nobody → Takashi Kajinami (kajinamit) |
To post a comment you must log in.
Fix proposed to branch: master /review. opendev. org/c/openstack /castellan/ +/913690
Review: https:/