| *** ricolin has joined #openstack-security | 02:20 | |
| *** threestrands has joined #openstack-security | 02:23 | |
| *** batshadow has joined #openstack-security | 03:29 | |
| *** batshadow has left #openstack-security | 03:29 | |
| *** pcaruana has joined #openstack-security | 04:36 | |
| *** Luzi has joined #openstack-security | 05:26 | |
| *** threestrands has quit IRC | 06:34 | |
| *** rcernin has quit IRC | 07:16 | |
| *** tesseract has joined #openstack-security | 07:17 | |
| *** tesseract has quit IRC | 07:30 | |
| *** tesseract has joined #openstack-security | 07:32 | |
| *** ricolin has quit IRC | 09:21 | |
| *** trident has quit IRC | 09:27 | |
| *** trident has joined #openstack-security | 09:29 | |
| *** pcaruana has quit IRC | 12:40 | |
| *** pcaruana has joined #openstack-security | 12:41 | |
| *** batshadow has joined #openstack-security | 13:28 | |
| *** batshadow has left #openstack-security | 13:28 | |
| *** Abhishek has joined #openstack-security | 13:54 | |
| Abhishek | Hi All.. while using /v3/auth/tokens api, can we encrypt and pass the password field in the api? | 13:55 |
|---|---|---|
| Abhishek | coz i see that when logging in with browser, the userid & password fields can be seen using developer tools page | 13:56 |
| Abhishek | isn't it a low security risk.. | 13:56 |
| *** trident has quit IRC | 13:56 | |
| *** trident has joined #openstack-security | 13:58 | |
| *** Luzi has quit IRC | 14:02 | |
| fungi | what would you encrypt it with? | 14:04 |
| fungi | anyway, probably more of a question for the #openstack-keystone channel first | 14:04 |
| fungi | but dolphm's blog post from when keystone first introduced fernet tokens explains the situation fairly well, i think: https://blog.dolphm.com/openstack-keystone-fernet-tokens/ | 14:06 |
| *** Abhishek has quit IRC | 14:40 | |
| *** austin987 has quit IRC | 15:45 | |
| fungi | gagehugo: what do you think about incorporating stuff from https://openstack.org/software/security/ into the security.o.o content revamp? | 16:19 |
| *** kmalloc is now known as needscoffee | 16:47 | |
| *** ricolin has joined #openstack-security | 17:19 | |
| *** ricolin has quit IRC | 17:45 | |
| *** tesseract has quit IRC | 18:13 | |
| *** pcaruana has quit IRC | 21:16 | |
Generated by irclog2html.py 2.15.3 by Marius Gedminas - find it at mg.pov.lt!