Project

General

Profile

Actions

Bug #27481

closed

Secrets should be hidden

Added by Adam Ruzicka about 5 years ago. Updated about 5 years ago.

Status:
Closed
Priority:
Normal
Assignee:
Category:
Foreman
Target version:
-
Difficulty:
Triaged:
No
Found in Releases:

Description

Secrets, such as sudo password do currently show up in task export.

Also if the password is set globally in settings, it is stored encrypted but still shown in its plain form in the web ui. Workaround for this is to declare it as a global parameter instead, where this issue is not present.


Related issues 2 (0 open2 closed)

Related to Ansible - Bug #27491: Ensure ssh and sudo passwords are not leaked in task exportClosedAdam RuzickaActions
Related to Foreman - Bug #29044: Settings should have their value hidden in API if they are encryptedClosedAdam RuzickaActions
Actions #1

Updated by The Foreman Bot about 5 years ago

  • Status changed from New to Ready For Testing
  • Pull request https://github.com/theforeman/foreman_remote_execution/pull/425 added
Actions #2

Updated by Lukas Zapletal about 5 years ago

  • Related to Bug #27491: Ensure ssh and sudo passwords are not leaked in task export added
Actions #3

Updated by Adam Ruzicka about 5 years ago

  • Bugzilla link set to 1701942
Actions #4

Updated by The Foreman Bot about 5 years ago

  • Fixed in Releases foreman_remote_execution 1.8.5 added
Actions #5

Updated by Anonymous about 5 years ago

  • Status changed from Ready For Testing to Closed
Actions #6

Updated by Adam Ruzicka about 5 years ago

  • Fixed in Releases foreman_remote_execution 2.0.0 added
  • Fixed in Releases deleted (foreman_remote_execution 1.8.5)
Actions #7

Updated by Adam Ruzicka over 4 years ago

  • Related to Bug #29044: Settings should have their value hidden in API if they are encrypted added
Actions

Also available in: Atom PDF