ansible/community.general

Fork 0

mirror of https://github.com/ansible-collections/community.general.git synced 2024-09-14 20:13:21 +02:00

Commit graph

Author	SHA1	Message	Date
grembo	da49c0968d	passwordstore: Prevent using path as password (#4192 ) Given a password stored in _path/to/secret_, requesting the password _path/to_ will literally return `path/to`. This can lead to using weak passwords by accident/mess up logic in code, based on the state of the password store. This is worked around by applying the same logic `pass` uses: If a password was returned, check if there is a .gpg file it could have come from. If not, treat it as missing. Fixes ansible-collections/community.general#4185	2022-02-17 20:58:36 +01:00

Author

SHA1

Message

Date

grembo

da49c0968d

passwordstore: Prevent using path as password (#4192 )

Given a password stored in _path/to/secret_, requesting the password
_path/to_ will literally return `path/to`. This can lead to using
weak passwords by accident/mess up logic in code, based on the
state of the password store.

This is worked around by applying the same logic `pass` uses:
If a password was returned, check if there is a .gpg file it could
have come from. If not, treat it as missing.

Fixes ansible-collections/community.general#4185

2022-02-17 20:58:36 +01:00

1 commit