#7554: python manage.py dbshell does not enter password from settings.py
-------------------------------------+-------------------------------------
Reporter: Kaell <joshalto@…> | Owner: nobody
Type: Uncategorized | Status: reopened
Component: Core (Management | Version: master
commands) | Resolution:
Severity: Normal | Triage Stage:
Keywords: dbshell password | Unreviewed
Has patch: 0 | Needs documentation: 0
Needs tests: 0 | Patch needs improvement: 0
Easy pickings: 0 | UI/UX: 0
-------------------------------------+-------------------------------------
Changes (by bradleyayers):
* status: closed => reopened
* severity: => Normal
* type: => Uncategorized
* easy: => 0
* ui_ux: => 0
* resolution: wontfix =>
Comment:
I think the issue FunkyBob raised of the PostgreSQL documentation
recommending **against** using an environment variable to supply the
password can be resolved by adding an `--insecure` command line argument
to `manage.py dbshell`. This would follow the convention established by
`manage.py runserver`.
When a user supplies the `--insecure` argument, they're giving consent to
database backends using insecure techniques to supply the password to the
database shell (e.g. using command line argument, or setting an
environment variable like PostgreSQL's `PGPASSWORD`).
Based on this rational I'm re-opening this ticket for re-evaluation.
--
Ticket URL: <https://code.djangoproject.com/ticket/7554#comment:2>
Django <https://code.djangoproject.com/>
The Web framework for perfectionists with deadlines.
--
You received this message because you are subscribed to the Google Groups
"Django updates" group.
To post to this group, send email to [email protected].
To unsubscribe from this group, send email to
[email protected].
For more options, visit this group at
http://groups.google.com/group/django-updates?hl=en.