openstack/barbican
Code Issues Proposed changes

Remove Simple Crypto plugin production warning

Browse Source 
Folks are using this for production, and in reality, even though the
plugin is not ideal, one can take measures to secure this backend enough
that it will be fine for most use-cases. Taking this into account, I'm
removing this warning that's putting users/deployers off.

Change-Id: I35ba3f78da6c77e2812fc7ec259cf149ab825caa
This commit is contained in:
Juan Antonio Osorio Robles
2018-01-29 19:11:53 +02:00
parent 3d3ea33e8b
commit b4c06c978b
1 changed files with 0 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
doc/source/install/barbican-backend.rst
View File

@@ -37,10 +37,6 @@ Simple Crypto Plugin
This crypto plugin is configured by default in ``/etc/barbican/barbican.conf``. This plugin
is completely insecure and is only suitable for development testing.
.. warning::
THIS PLUGIN IS NOT SUITABLE FOR PRODUCTION DEPLOYMENTS.
This plugin uses single symmetric key (kek - or 'key encryption key')
- which is stored in plain text in the ``/etc/barbican/barbican.conf`` file to encrypt
and decrypt all secrets.