openstack
/
oslo.policy
Code Issues Proposed changes
oslo.policy/oslo_policy
History
Lance Bragstad b9fd10e261 Prevent sensitive target data from being logged 
A previous commit made some changes to allow for more robust logging
of RBAC enforcement data:

  I4642c57990b145c0e691140970574412682e66a5

This also included logging of the target data, which is provided by
the service calling policy enforcement.

This commit makes it so that target data is protected from exposing
sensitive information. A good example is doing operations on users
in keystone since keystone would populate the target dictionary
with user information, and possibly passwords.

This issue was found in keystone unit testing while trying to consume
oslo.policy 1.43.0.

Change-Id: I2702df8f3d7c040312eb863f7772b129e0e2c45c
 		2018-12-05 22:23:08 +00:00
..
locale/en_GB/LC_MESSAGES Imported Translations from Zanata 2018-08-09 07:19:45 +00:00
tests Merge "Add domain scope support for scope types" 2018-12-04 22:37:51 +00:00
__init__.py exported from oslo-incubator by graduate.sh 2014-12-09 14:40:01 -03:00
_cache_handler.py Add missing parameter description in module _cache_handler 2016-11-02 02:39:38 +00:00
_checks.py Handle deprecation of inspect.getargspec 2017-11-21 12:55:11 -06:00
_external.py http/https check rules as stevedore extensions 2017-10-05 08:40:47 -04:00
_i18n.py Update URLs in documents according to document migration 2017-07-12 23:01:31 +08:00
_parser.py http/https check rules as stevedore extensions 2017-10-05 08:40:47 -04:00
fixture.py http/https check rules as stevedore extensions 2017-10-05 08:40:47 -04:00
generator.py generator: Reimplement wrapping of 'description' 2018-06-08 18:41:24 +01:00
opts.py Add configuration option for enforcing scope 2017-12-20 17:05:02 +00:00
policy.py Prevent sensitive target data from being logged 2018-12-05 22:23:08 +00:00
shell.py oslopolicy-checker: iterate through rules in sorted order 2018-11-27 11:36:06 +02:00
sphinxext.py sphinxext: Start parsing 'DocumentedRuleDefault.description' as rST 2018-08-22 11:17:06 +01:00
sphinxpolicygen.py Update sphinx extension logging 2018-10-16 14:35:57 -05:00
version.py pbr.version.VersionInfo needs package name (oslo.xyz and not oslo_xyz) 2017-02-06 12:49:22 -05:00