"Check password for Keystone user" task dumps raw password in output
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
tripleo |
Fix Released
|
High
|
Takashi Kajinami |
Bug Description
Description
===========
Currently the "Check password for Keystone user" task dumps raw password strings in case the user is not yet created (or has a different password).
2022-11-28 16:08:38.471435 | fa163e7e-
We should hide such sensitive information from ansible log.
Note that this task was added recently by
https:/
Steps to reproduce
==================
* Deploy standalone
* See deployment output
Expected result
===============
* Output does not contain the raw password string
Actual result
=============
* Output contains the raw password string
Environment
===========
N/A
Logs & Configs
==============
Example:
https:/
description: | updated |
Changed in tripleo: | |
importance: | Undecided → High |
status: | New → Triaged |
assignee: | nobody → Takashi Kajinami (kajinamit) |
milestone: | none → antelope-1 |
Fix proposed to branch: master /review. opendev. org/c/openstack /tripleo- ansible/ +/865928
Review: https:/