openstack/puppet-keystone
Code Issues Proposed changes
dd210ead39
puppet-keystone/releasenotes/notes/permissions_on_keys_and_creds-9c0b9f56dfc1fd63.yaml
Matt Fischer 5ceee03113 set 0600 permissions on fernet keys & folder 
Fernet keys and the fernet key folder should be managed with permissions
0600 for more security on the keys. Same for the credentials folder and
credentials.

Change-Id: I42b868d27582d1edec22fd93cb1c86f489e144a2
2016-10-10 18:04:21 -06:00

6 lines
181 B
YAML
Raw Blame History

---
security:
- Make the fernet key directory, fernet keys, credential
folder, and credentials have mode 0600. This ensures
that only the keystone user can read the keys.
View Git Blame Copy Permalink