Location reported in notifications
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
Glance |
Fix Released
|
Medium
|
Stuart McLaren | ||
Grizzly |
Fix Released
|
Medium
|
Stuart McLaren |
Bug Description
If I create an image, eg:
$ glance --os-username glance --os-password <redacted> --os-tenant-name service --os-auth-url http://
while having notification enabled, eg in glance-api.conf:
notifier_strategy = rabbit
And then query ceilometer:
curl http://
{
"
.
.
.
"
"
"status": "active",
"name": "Image2",
.
.
.
"location": "swift+http://
.
.
.
"size": 667
},
"
}
The location (with credentials) is shown in plaintext.
This is the case whether or not encryption of the location is enabled via the "metadata_
| id | name | size | status | is_public | location | created_at | updated_at | deleted_at | deleted | disk_format | container_format | checksum | owner | min_disk | min_ram | protected |
| f9f40980-
Changed in glance: | |
assignee: | nobody → Stuart McLaren (stuart-mclaren) |
Changed in glance: | |
importance: | Low → Medium |
Changed in glance: | |
milestone: | none → grizzly-rc1 |
Changed in glance: | |
status: | Fix Committed → Fix Released |
Similarly if notification is set to file, ie:
notifier_strategy = logging
a6c66e01bc1f51] {'event_type': 'image.activate', 'timestamp': '2013-02-14 12:34:47.570814', 'message_id': 'b3a41d9f- 68bf-4777- 8d9a-5d5779d4d3 e8', 'priority': 'INFO', 'publisher_id': 'server- 1360836694- az-2-region- a-geo-1' , 'payload': {u'status': u'active', u'name': u'Image3', u'deleted': False, u'container_ format' : u'bare', u'created_at': u'2013- 02-14T12: 34:46', u'disk_format': u'qcow2', u'updated_at': u'2013- 02-14T12: 34:47', u'properties': {}, u'min_disk': 0, u'protected': False, u'id': u'9a0f1074- 8196-4f7d- a3c3-c5e131b9ce 79', u'location': 'swift+http:// service% 3Aglance:<redacted> @10.7.101. 5:5000/ v2.0/glance/ 9a0f1074- 8196-4f7d- a3c3-c5e131b9ce 79', u'checksum': u'84de8695202d1 16bbe0e0fb06c6e 020b', u'owner': u'e2906b40a4174 7fbbfa6c66e01bc 1f51', u'is_public': False, u'deleted_at': None, u'min_ram': 0, u'size': 667}}