Service shared secrets in heat templates should be hidden
Bug #1399793 reported by
Chris Jones
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
tripleo |
Fix Released
|
High
|
Juan Antonio Osorio Robles |
Bug Description
Nova and Neutron (maybe others?) use shared secrets to sign some of their intra-service communication. Currently we do not set "hidden: true" on these elements of the heat templates.
I suggest that we should do that, on the grounds that they are effectively private key material.
description: | updated |
Changed in tripleo: | |
status: | New → Triaged |
importance: | Undecided → High |
Changed in tripleo: | |
status: | Fix Committed → Fix Released |
To post a comment you must log in.
Fix proposed to branch: master /review. openstack. org/233578
Review: https:/