Bug #29931: Root repository upstream password saved in clear text - Katello - Foreman

Actions

Bug #29931

closed

Root repository upstream password saved in clear text

Added by Piyush Tiwari almost 5 years ago. Updated over 4 years ago.

Status:

Closed

Priority:

Normal

Assignee:

Category:

Repositories

Target version:

Difficulty:

Triaged:

Yes

Bugzilla link:

Pull request:

https://github.com/Katello/katello/pull/8729

Fixed in Releases:

Found in Releases:

Red Hat JIRA:

Subtasks 1 (0 open — 1 closed)

Related issues 1 (0 open — 1 closed)

Actions

#1

Updated by Partha Aji almost 5 years ago

Bugzilla link set to 1630536

Actions

#2

Updated by Partha Aji almost 5 years ago

The upstream_password for root_repository is stored in clear text in the database. This password needs to be encrypted.

Look at https://github.com/theforeman/foreman/blob/develop/app/models/http_proxy.rb#L10 for example on how to do that (think we have to just include Encryptable and encrypts)

Actions

#3

Updated by The Foreman Bot almost 5 years ago

Status changed from New to Ready For Testing
Pull request https://github.com/Katello/katello/pull/8729 added

Actions

#4

Updated by Justin Sherrill almost 5 years ago

Subject changed from Encrypt Root repository upstream password saved in clear text to Root repository upstream password saved in clear text
Category set to Repositories
Target version set to Katello 3.16.0
Triaged changed from No to Yes

Actions

#5

Updated by The Foreman Bot almost 5 years ago

Fixed in Releases Katello 4.0.0 added

Actions

#6

Updated by Piyush Tiwari almost 5 years ago

Status changed from Ready For Testing to Closed

Applied in changeset katello|a9abccc2c10f5f2c1194d564834d131d57b28401.

Actions

#7

Updated by Partha Aji almost 5 years ago

Related to Bug #30064: RootRepository password length too short added

Actions

Also available in: Atom PDF