From 76c7b08645315db4ec16f1703848b51001511121 Mon Sep 17 00:00:00 2001 From: Michael J Fork Date: Mon, 4 Feb 2013 15:42:58 +0000 Subject: [PATCH] Mark password config options with secret Config object supports masking values when writing out if the secret flag is set on the option definition. This change flags all python-keystoneclient options containing a password. Change-Id: I1ffc9727ab66c7acc6d4cf8e5870bb32f5e68b67 --- keystoneclient/middleware/auth_token.py | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/keystoneclient/middleware/auth_token.py b/keystoneclient/middleware/auth_token.py index df2076fc..06e26389 100644 --- a/keystoneclient/middleware/auth_token.py +++ b/keystoneclient/middleware/auth_token.py @@ -161,9 +161,9 @@ opts = [ cfg.StrOpt('auth_protocol', default='https'), cfg.StrOpt('auth_uri', default=None), cfg.BoolOpt('delay_auth_decision', default=False), - cfg.StrOpt('admin_token'), + cfg.StrOpt('admin_token', secret=True), cfg.StrOpt('admin_user'), - cfg.StrOpt('admin_password'), + cfg.StrOpt('admin_password', secret=True), cfg.StrOpt('admin_tenant_name', default='admin'), cfg.StrOpt('cache', default=None), # env key for the swift cache cfg.StrOpt('certfile'), @@ -173,7 +173,7 @@ opts = [ cfg.ListOpt('memcache_servers'), cfg.IntOpt('token_cache_time', default=300), cfg.StrOpt('memcache_security_strategy', default=None), - cfg.StrOpt('memcache_secret_key', default=None), + cfg.StrOpt('memcache_secret_key', default=None, secret=True), ] CONF.register_opts(opts, group='keystone_authtoken')