openstack/manila
Code Issues Proposed changes

[coordination] backend_url should be secret

Browse Source 
The backend_url option can sometimes contain secrets.

For example when redis coordination backend is used and authentication
is enabled in redis, the plain redis password is put as an URL element.

[coordination]
backend_url=redis://:password@127.0.0.1:6379

Closes-Bug: #2012246
Change-Id: Ia815720cedda2f5c70205ffda5c765364cee8f8c
This commit is contained in:
Takashi Kajinami
2023-03-20 18:31:52 +09:00
parent f03e84ae62
commit 8ec4687566
1 changed files with 1 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

1
manila/coordination.py
View File

@@ -30,6 +30,7 @@ LOG = log.getLogger(__name__)
coordination_opts = [ coordination_opts = [
cfg.StrOpt('backend_url', cfg.StrOpt('backend_url',
secret=True,
default='file://$state_path', default='file://$state_path',
help='The back end URL to use for distributed coordination.') help='The back end URL to use for distributed coordination.')
] ]