openstack team mailing list archive
-
openstack team
-
Mailing list archive
-
Message #15248
Re: Keyring support in openstack
On Mon, Jul 30, 2012 at 5:30 PM, Adam Young <ayoung@xxxxxxxxxx> wrote:
> On 07/30/2012 05:17 PM, Kevin L. Mitchell wrote:
>
>> On Mon, 2012-07-30 at 13:50 -0700, Bhuvaneswaran A wrote:
>>
>>> The wiki mentions the password being saved using
>>>> keyring.backend.**UncryptedFileKeyring. Does that mean the password is
>>>>
>>> saved
>>>
>>>> in cleartext? Is the file protected in some way besides filesystem
>>>> permissions?
>>>>
>>> As mentioned in wiki page, the password is stored in base64 format.
>>>
>> Which means it's stored in cleartext. That is Not Good(tm) :)
>>
> Can Keyring be used to store a token instead? That would A) be better
> than password and B) avoid a Keystone hit.
Don't tokens expire?
Doug
Follow ups
References