keystone config still has admin_token
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
StarlingX |
Fix Released
|
Medium
|
Andy |
Bug Description
Brief Description
-----------------
After a system is deployed, the keystone config file /etc/keystone/
Severity
--------
Minor
Steps to Reproduce
------------------
- Deploy a system of any config.
- check /etc/keystone/
Expected Behavior
------------------
the admin_token shouldn't be in /etc/keystone/
Actual Behavior
----------------
- /etc/keystone/
admin_token = 16e8b47d9d482e5
Reproducibility
---------------
Reproducible
System Configuration
-------
Any
Branch/Pull Time/Commit
-------
stx master
Last Pass
---------
N/A
Timestamp/Logs
--------------
See steps to reproduce.
Test Activity
-------------
Developer Testing
Workaround
----------
N/A
Changed in starlingx: | |
assignee: | nobody → Andy (andy.wrs) |
summary: |
- keystone config still has admin_token and services's passwords have - predictable pattern + keystone config still has admin_token |
description: | updated |
stx.5.0 / medium priority - should be fixed as these are security concerns