Set auth_encryption_key option to be secret

To avoid exposure in the logs, auth_encryption_key from heat.conf
should be marked secret.

Change-Id: Ia4aca067f03317dd8073988cd29d26c2ccc88778
Closes-Bug: #1446408

heat/common/crypt.py

@@ -22,10 +22,11 @@ from heat.openstack.common.crypto import utils
 
 auth_opts = [
     cfg.StrOpt('auth_encryption_key',
+               secret=True,
                default='notgood but just long enough i t',
-               help=_('Encryption key used for authentication '
-                      'info in database. Length of this key '
-                      'must be 16, 24 or 32'))
+               help=_('Key used to encrypt authentication info in the '
+                      'database. Length of this key must be 16, 24 or 32 '
+                      'characters.'))
 ]
 
 cfg.CONF.register_opts(auth_opts)