From b4c06c978b2285116a0c97d5eca8452248aa7544 Mon Sep 17 00:00:00 2001 From: Juan Antonio Osorio Robles Date: Mon, 29 Jan 2018 19:11:53 +0200 Subject: [PATCH] Remove Simple Crypto plugin production warning Folks are using this for production, and in reality, even though the plugin is not ideal, one can take measures to secure this backend enough that it will be fine for most use-cases. Taking this into account, I'm removing this warning that's putting users/deployers off. Change-Id: I35ba3f78da6c77e2812fc7ec259cf149ab825caa --- doc/source/install/barbican-backend.rst | 4 ---- 1 file changed, 4 deletions(-) diff --git a/doc/source/install/barbican-backend.rst b/doc/source/install/barbican-backend.rst index 07fe6247c..c31e0e1dd 100644 --- a/doc/source/install/barbican-backend.rst +++ b/doc/source/install/barbican-backend.rst @@ -37,10 +37,6 @@ Simple Crypto Plugin This crypto plugin is configured by default in ``/etc/barbican/barbican.conf``. This plugin is completely insecure and is only suitable for development testing. -.. warning:: - - THIS PLUGIN IS NOT SUITABLE FOR PRODUCTION DEPLOYMENTS. - This plugin uses single symmetric key (kek - or 'key encryption key') - which is stored in plain text in the ``/etc/barbican/barbican.conf`` file to encrypt and decrypt all secrets.