Making sensitive parameters secret to avoid logging

oslo config has an option called 'secret' setting this to true will avoid accidental logging of sensitive parameters during operation. Change-Id: If95d6a2d31527b2ce42205d2603f5bf345a91e10 Closes-Bug: #1576251
2016-04-28 09:37:29 -05:00 · 2016-04-28 09:37:29 -05:00 · 72e8950478
commit 72e8950478
parent 46a80444c1
1 changed files with 2 additions and 2 deletions
--- a/castellan/common/utils.py
+++ b/castellan/common/utils.py
@ -37,7 +37,7 @@ credential_opts = [
               "the credential factory."),

    # token opt
-    cfg.StrOpt('token', default=None,
+    cfg.StrOpt('token', default=None, secret=True,
               help="Token for authentication. Required for 'token' and "
               "'keystone_token' auth_type if no context is passed to the "
               "credential factory."),
@ -46,7 +46,7 @@ credential_opts = [
    cfg.StrOpt('username', default=None,
               help="Username for authentication. Required for 'password' "
               "auth_type. Optional for the 'keystone_password' auth_type."),
-    cfg.StrOpt('password', default=None,
+    cfg.StrOpt('password', default=None, secret=True,
               help="Password for authentication. Required for 'password' and "
               "'keystone_password' auth_type."),