Fixes T220
Details
- Reviewers
tflink jskladan - Maniphest Tasks
- T220: Fix ResultsDB Database URI Leak
- Commits
- rRSDB55bfa3c97e0a: Introduce SHOW_DB_URI config value
Run run_cli.py with TEST and/or PROD set to true and see if DB URI is shown.
Diff Detail
- Repository
- rRSDB resultsdb
- Lint
Lint Skipped - Unit
Unit Tests Skipped
resultsdb/config.py | ||
---|---|---|
50 | Unfortunately, this still leaks the DBURI by default since DevelopmentConfig is the config used if nothing else is selected. I'd rather see it false in config.py and maybe commented out or set to false in conf/settings.py.example |
resultsdb/config.py | ||
---|---|---|
50 |
Isn't it expected that the DBURI is shown in DevelopmentConfig? |
If you have other ideas on how to keep the DBURI from leaking to logs by default, I'm not set on a single particular solution
resultsdb/config.py | ||
---|---|---|
50 | Perhaps but my concern is that the complete DBURI is leaking by default. I just don't want to have to run around changing db passwords every time I forget to put PROD='true' in front of a command |
Unfortunately, this still leaks the DBURI by default since DevelopmentConfig is the config used if nothing else is selected.
I'd rather see it false in config.py and maybe commented out or set to false in conf/settings.py.example