Project

General

Profile

Actions

Feature #2929

closed

Generate CR encryption key during package installation

Added by Dominic Cleal almost 11 years ago. Updated about 6 years ago.

Status:
Closed
Priority:
Normal
Assignee:
Category:
Packaging
Target version:
Difficulty:
Triaged:
Fixed in Releases:
Found in Releases:

Description

In #2424, compute resource passwords gained the ability to be encrypted. This requires that a key is generated and existing passwords are encrypted via the new rake tasks.

rake security:generate_encryption_key     # Generate new encryption key
rake db:compute_resources:decrypt # Decrypt compute resource fields
rake db:compute_resources:encrypt # Encrypt compute resource fields

The generate task creates a key at ~foreman/config/initializers/encryption_key.rb but I suggest for the purposes of packaging, we move this to /etc/foreman after it's created and symlink it back into place. Ensure permissions are tight.


Related issues 1 (0 open1 closed)

Related to Foreman - Feature #2424: encrypt compute resource passwordClosedJoseph Magen04/24/2013Actions
Actions #1

Updated by Dominic Cleal almost 11 years ago

  • Related to Feature #2424: encrypt compute resource password added
Actions #2

Updated by Dominic Cleal almost 11 years ago

  • Status changed from New to Assigned
  • Assignee set to Dominic Cleal
Actions #3

Updated by Lukas Zapletal almost 11 years ago

  • Target version changed from 1.3.0 to 1.4.0
Actions #4

Updated by Greg Sutcliffe almost 11 years ago

  • Target version deleted (1.4.0)
Actions #5

Updated by Anonymous over 10 years ago

  • Target version set to 1.10.0
Actions #6

Updated by Dominic Cleal over 10 years ago

  • Target version changed from 1.10.0 to 1.9.3
Actions #7

Updated by Anonymous over 10 years ago

  • Target version deleted (1.9.3)
Actions #8

Updated by Anonymous over 10 years ago

  • Target version set to 1.9.0
Actions #10

Updated by Dominic Cleal over 10 years ago

  • Status changed from Assigned to Ready For Testing
Actions #11

Updated by Anonymous over 10 years ago

  • Target version changed from 1.9.0 to 1.8.4
Actions #12

Updated by Dominic Cleal over 10 years ago

  • Translation missing: en.field_release set to 4
Actions #13

Updated by Lukas Zapletal over 10 years ago

  • Status changed from Ready For Testing to Closed

Merged as fab676e.

Actions

Also available in: Atom PDF