From db676bcde0b301c1cd1a4346687b3cef02390e8c Mon Sep 17 00:00:00 2001
From: Eric Brown <browne@vmware.com>
Date: Wed, 9 Mar 2016 10:16:43 -0800
Subject: [PATCH] Mark trustee_domain_admin_password secret

The trustee_domain_admin_password config option needs to be marked
secret in order to avoid leaking of the password into the logs.

Change-Id: I45d87b5fc09ffbc075cba2575869a8c5cf10bc8b
Closes-Bug: #1555276
---
 magnum/common/keystone.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/magnum/common/keystone.py b/magnum/common/keystone.py
index f555880ff9..286872a35d 100644
--- a/magnum/common/keystone.py
+++ b/magnum/common/keystone.py
@@ -31,7 +31,7 @@ trust_opts = [
     cfg.StrOpt('trustee_domain_admin_id',
                help=_('Id of the admin with roles sufficient to manage users'
                       ' in the trustee_domain')),
-    cfg.StrOpt('trustee_domain_admin_password',
+    cfg.StrOpt('trustee_domain_admin_password', secret=True,
                help=_('Password of trustee_domain_admin')),
     cfg.ListOpt('roles',
                 default=[],