summaryrefslogtreecommitdiffstats
path: root/ipaplatform/base
diff options
context:
space:
mode:
authorEndi S. Dewata <edewata@redhat.com>2015-08-22 01:14:16 +0200
committerPetr Vobornik <pvoborni@redhat.com>2015-08-26 13:49:57 +0200
commit4e474c5a20b91d4eed75f514f801b40f1f291e65 (patch)
treec90597d162220f0186b65f0204cf1b6495a96bf7 /ipaplatform/base
parentb1f1dcaab3c2b4799ef12a417a9998d7556496af (diff)
downloadfreeipa-4e474c5a20b91d4eed75f514f801b40f1f291e65.tar.gz
freeipa-4e474c5a20b91d4eed75f514f801b40f1f291e65.tar.xz
freeipa-4e474c5a20b91d4eed75f514f801b40f1f291e65.zip
Removed clear text passwords from KRA install log.
The ipa-kra-install tool has been modified to use password files instead of clear text passwords when invoking pki tool such that the passwords are no longer visible in ipaserver-kra-install.log. https://fedorahosted.org/freeipa/ticket/5246 Reviewed-By: Alexander Bokovoy <abokovoy@redhat.com>
Diffstat (limited to 'ipaplatform/base')
-rw-r--r--ipaplatform/base/paths.py2
1 files changed, 2 insertions, 0 deletions
diff --git a/ipaplatform/base/paths.py b/ipaplatform/base/paths.py
index 0dd3c7fda..5c8f25d6e 100644
--- a/ipaplatform/base/paths.py
+++ b/ipaplatform/base/paths.py
@@ -343,6 +343,8 @@ class BasePathNamespace(object):
SLAPD_INSTANCE_SOCKET_TEMPLATE = "/var/run/slapd-%s.socket"
ALL_SLAPD_INSTANCE_SOCKETS = "/var/run/slapd-*.socket"
ADMIN_CERT_PATH = '/root/.dogtag/pki-tomcat/ca_admin.cert'
+ KRA_NSSDB_PASSWORD_FILE = "/root/.dogtag/pki-tomcat/kra/password.conf"
+ KRA_PKCS12_PASSWORD_FILE = "/root/.dogtag/pki-tomcat/kra/pkcs12_password.conf"
ENTROPY_AVAIL = '/proc/sys/kernel/random/entropy_avail'
LDIF2DB = '/usr/sbin/ldif2db'
DB2LDIF = '/usr/sbin/db2ldif'
generated by cgit (git 2.34.1) at 2024-06-21 10:59:52 +0000