URL: https://github.com/freeipa/freeipa/pull/231 Author: stlaz Title: #231: Do not log DM password in ca/kra installation logs Action: opened
PR body: """ We can merge this after refactoring merges not to mess the rebases. https://fedorahosted.org/freeipa/ticket/6461 """ To pull the PR as Git branch: git remote add ghfreeipa https://github.com/freeipa/freeipa git fetch ghfreeipa pull/231/head:pr231 git checkout pr231
From d40d3e9bc5c0cccbd172ae4480316c13f3bf82f7 Mon Sep 17 00:00:00 2001 From: Stanislav Laznicka <slazn...@redhat.com> Date: Thu, 10 Nov 2016 14:24:26 +0100 Subject: [PATCH] Do not log DM password in ca/kra installation logs https://fedorahosted.org/freeipa/ticket/6461 --- ipaserver/install/cainstance.py | 3 ++- ipaserver/install/krainstance.py | 3 ++- 2 files changed, 4 insertions(+), 2 deletions(-) diff --git a/ipaserver/install/cainstance.py b/ipaserver/install/cainstance.py index 1c31281..ed5ac9e 100644 --- a/ipaserver/install/cainstance.py +++ b/ipaserver/install/cainstance.py @@ -576,7 +576,8 @@ def __spawn_instance(self): self.backup_state('installed', True) try: - DogtagInstance.spawn_instance(self, cfg_file) + DogtagInstance.spawn_instance(self, cfg_file, + nolog_list=[self.dm_password]) finally: os.remove(cfg_file) diff --git a/ipaserver/install/krainstance.py b/ipaserver/install/krainstance.py index 77f23c1..e749c73 100644 --- a/ipaserver/install/krainstance.py +++ b/ipaserver/install/krainstance.py @@ -257,7 +257,8 @@ def __spawn_instance(self): config.write(f) try: - DogtagInstance.spawn_instance(self, cfg_file) + DogtagInstance.spawn_instance(self, cfg_file, + nolog_list=[self.dm_password]) finally: os.remove(p12_tmpfile_name) os.remove(cfg_file)
-- Manage your subscription for the Freeipa-devel mailing list: https://www.redhat.com/mailman/listinfo/freeipa-devel Contribute to FreeIPA: http://www.freeipa.org/page/Contribute/Code
