ansible/community.general

Fork 0

mirror of https://github.com/ansible-collections/community.general.git synced 2024-09-14 20:13:21 +02:00

Commit graph

Author SHA1 Message Date

Author	SHA1	Message	Date
patchback[bot]	271bafb637	passwordstore: Prevent using path as password (#4192 ) (#4218 ) Given a password stored in _path/to/secret_, requesting the password _path/to_ will literally return `path/to`. This can lead to using weak passwords by accident/mess up logic in code, based on the state of the password store. This is worked around by applying the same logic `pass` uses: If a password was returned, check if there is a .gpg file it could have come from. If not, treat it as missing. Fixes ansible-collections/community.general#4185 (cherry picked from commit `da49c0968d`) Co-authored-by: grembo <freebsd@grem.de>	2022-02-17 21:33:18 +01:00

patchback[bot]

271bafb637

passwordstore: Prevent using path as password (#4192 ) (#4218 )

Given a password stored in _path/to/secret_, requesting the password
_path/to_ will literally return `path/to`. This can lead to using
weak passwords by accident/mess up logic in code, based on the
state of the password store.

This is worked around by applying the same logic `pass` uses:
If a password was returned, check if there is a .gpg file it could
have come from. If not, treat it as missing.

Fixes ansible-collections/community.general#4185

(cherry picked from commit da49c0968d)

Co-authored-by: grembo <freebsd@grem.de>

2022-02-17 21:33:18 +01:00

1 commit