Descriptionapiserver/provisioner: Mask out secret env attrs
This changes the provisioner API EnvironConfig()
call to mask out any secret attributes before
returning the config to non-manager agents.
The environment manager agents still get everything.
This closes of a security issue with LXC provisioner
having access to the environment configuration and
its secrets via the API.
https://code.launchpad.net/~dimitern/juju-core/145-apiserver-provisioner-blank-secrets/+merge/187577
Requires: https://code.launchpad.net/~dimitern/juju-core/144-environs-secretattrs-strings/+merge/187566
(do not edit description out of merge proposal)
Patch Set 1 #
Total comments: 1
MessagesTotal messages: 3
|