1
0
Fork 0
mirror of https://github.com/ansible-collections/community.general.git synced 2024-09-14 20:13:21 +02:00

ovirt_auth: fix type and password leak (#3119)

Do not leak the password in log, and verify the path of ca_file
This commit is contained in:
Michael Scherer 2016-10-17 11:38:20 +02:00 committed by Matt Clay
parent e5688c709a
commit c1f7fa2f3b

View file

@ -98,10 +98,7 @@ tasks:
# oVirt user's password, and include that yaml file with variable:
- include_vars: ovirt_password.yml
# Always be sure to pass 'no_log: true' to ovirt_auth task,
# so the oVirt user's password is not logged:
- name: Obtain SSO token with using username/password credentials:
no_log: true
ovirt_auth:
url: https://ovirt.example.com/ovirt-engine/api
username: admin@internal
@ -171,8 +168,8 @@ def main():
argument_spec=dict(
url=dict(default=None),
username=dict(default=None),
password=dict(default=None),
ca_file=dict(default=None),
password=dict(default=None, no_log=True),
ca_file=dict(default=None, type='path'),
insecure=dict(required=False, type='bool', default=False),
timeout=dict(required=False, type='int', default=0),
compress=dict(required=False, type='bool', default=True),