Default password hardcoded in AIO scripts
Bug #1462000 reported by
Christopher H. Laco
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
OpenStack-Ansible |
Fix Released
|
Low
|
Andy McCrae | ||
Kilo |
Fix Released
|
Low
|
Darren Birkett | ||
Trunk |
Fix Released
|
Low
|
Andy McCrae |
Bug Description
The default password in the AIO gating script and heat template are hardcoded.
https:/
https:/
From a security standpoint, we shouldn't have any default passwords in the source for the same reasons we remove all of the default example passwords from the user_secrets.yml file.
The preferred behavior would be to generate a random password each time.
Changed in openstack-ansible: | |
status: | New → Confirmed |
importance: | Undecided → Low |
Changed in openstack-ansible: | |
assignee: | nobody → Andy McCrae (andrew-mccrae) |
Changed in openstack-ansible: | |
status: | Confirmed → In Progress |
To post a comment you must log in.
Fix proposed to branch: master /review. openstack. org/190266
Review: https:/