Project

General

Profile

Feature #10263

Encrypt LDAP password in database

Added by Daniel Lobato Garcia over 6 years ago. Updated over 3 years ago.

Status:
Closed
Priority:
Normal
Category:
Security
Target version:
Difficulty:
Triaged:
Bugzilla link:
Fixed in Releases:
Found in Releases:

Description

LDAP passwords are kept in plaintext in the database. We could follow the same strategy as we do with ComputeResource passwords and encrypt them, and deencrypt them only when we need to send them.


Related issues

Related to Foreman - Feature #2424: encrypt compute resource passwordClosed2013-04-24
Related to Foreman - Bug #11122: Already initialized constant exception after service startupClosed2015-07-15

Associated revisions

Revision be6ce5bc (diff)
Added by Daniel Lobato Garcia over 6 years ago

Fixes #10263 - Encrypt LDAP password in db

This commit includes a rake task to encrypt all encryptable resources.
A helper function can be used to add more encryption tasks easily.

Revision 3e001292 (diff)
Added by Dominic Cleal over 6 years ago

refs #10263 - update DB encryption rake task

Revision 7b5cfe45 (diff)
Added by Dominic Cleal over 6 years ago

refs #10263 - update DB encryption rake task

History

#1 Updated by Dominic Cleal over 6 years ago

  • Related to Feature #2424: encrypt compute resource password added

#2 Updated by The Foreman Bot over 6 years ago

  • Status changed from New to Ready For Testing
  • Pull request https://github.com/theforeman/foreman/pull/2320 added
  • Pull request deleted ()

#3 Updated by Dominic Cleal over 6 years ago

  • Legacy Backlogs Release (now unused) set to 35

#4 Updated by Daniel Lobato Garcia over 6 years ago

  • Status changed from Ready For Testing to Closed
  • % Done changed from 0 to 100

#5 Updated by Dominic Cleal over 6 years ago

  • Related to Bug #11122: Already initialized constant exception after service startup added

Also available in: Atom PDF