Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Per-SP configuration for LDAP attribute store microservice #60

Merged
merged 1 commit into from
Jan 10, 2017
Merged

Per-SP configuration for LDAP attribute store microservice #60

merged 1 commit into from
Jan 10, 2017

Conversation

skoranda
Copy link
Contributor

@skoranda skoranda commented Jan 8, 2017

Added functionality to the LDAP attribute store microservice
so that all details include the LDAP directory details can
be configured on a per-SP basis. Also added better logging.

@skoranda
Per-SP configuration for LDAP attribute store microservice
4310017 
Added functionality to the LDAP attribute store microservice
so that all details include the LDAP directory details can
be configured on a per-SP basis. Also added better logging.
Gijutsu
Gijutsu reviewed Jan 9, 2017
View reviewed changes
src/satosa/micro_services/ldap_attribute_store.py
config = self.config[spEntityID]
configClean = copy.deepcopy(config)
if 'bind_password' in configClean:
configClean['bind_password'] = 'XXXXXXXX'
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

As asked above, is this line a leftover from debugging?

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

No. The intent is to log the configuration at the DEBUG level but blank out any bind password included in the configuration so that passwords are never logged.

Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

OK, thanks for the explanation, I see now how it's used while logging.

src/satosa/micro_services/ldap_attribute_store.py
config = self.config
configClean = copy.deepcopy(config)
if 'bind_password' in configClean:
configClean['bind_password'] = 'XXXXXXXX'
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Is this, together with the similar line at the comment below, a leftover from debugging?

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

No. The intent is to log the configuration at the DEBUG level but blank out any bind password included in the configuration so that passwords are never logged.

Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

OK, thanks for the explanation, I see now how it's used while logging.

@Gijutsu Gijutsu merged commit 3e19014 into IdentityPython:master Jan 10, 2017
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@Gijutsu Gijutsu Gijutsu left review comments

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@skoranda @Gijutsu