make the sanitization keys in mask_password dynamic
Bug #1433652 reported by
Amrith Kumar
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
oslo.utils |
Opinion
|
Undecided
|
Amrith Kumar |
Bug Description
Currently the only way to sanitize a string with a new key is to update strutils and have a dependency on the version of strutils. It would be good to make this dynamic.
Changed in oslo.utils: | |
assignee: | nobody → Amrith (amrith) |
Changed in oslo.utils: | |
status: | New → Opinion |
To post a comment you must log in.
Would it? I'm afraid we would have different apps passing different dynamic values in, which would give them different levels of security. If we identify a string that needs to be masked out, don't we want it masked everywhere, including if it passes over RPC to another service?